CVE-2023-1185
ECshop up to version 4.1.8 contains a vulnerability in the New Product Handler that allows unrestricted file uploads. The issue can be exploited remotely and the exploit has been disclosed publicly. A remediation is available: upgrade ECshop to a version later than 4.1.8; as a temporary workaroun...