Security Advisory

CVE-2020-26008

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-03-20 21:12:01

Last updated 2024-08-04 15:49:06

Assigner mitre

State PUBLISHED

Description

The PluginsUpload function in application/service/PluginsAdminService.php of ShopXO v1.9.0 contains an arbitrary file upload vulnerability which allows attackers to execute arbitrary code via uploading a crafted PHP file.

← Browse all CVEs View on cve.org ↗