Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2021-3291

Disclosure Date: January 26, 2021 (last updated February 22, 2025)
Zen Cart 1.5.7b allows admins to execute arbitrary OS commands by inspecting an HTML radio input element (within the modules edit page) and inserting a command.
Attack Vector: NetworkPrivileges: HighUser Interaction: None
0
0