Super Store Finder 3.7 and below is vulnerable to authenticated Arbitrary PHP Code Injection that could lead to Remote Code Execution when settings overwrite config.inc.php content.
References
Link | Resource |
---|---|
https://packetstormsecurity.com/files/174756/Super-Store-Finder-3.7-Remote-Command-Execution.html | Exploit Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-10-02T00:00:00
Updated: 2023-10-02T19:59:39.950872
Reserved: 2023-09-25T00:00:00
Link: CVE-2023-43835
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-10-02T20:15:10.187
Modified: 2023-10-04T17:00:04.247
Link: CVE-2023-43835
JSON object: View
Redhat Information
No data.
CWE