Vulnerability Description
A vulnerability was found in SourceCodester Simple and Nice Shopping Cart Script 1.0. It has been rated as critical. This issue affects some unknown processing of the file uploaderm.php. The manipulation of the argument submit leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-223397 was assigned to this vulnerability.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Simple And Nice Shopping Cart Script Project | Simple And Nice Shopping Cart Script | 1.0 |
Related Weaknesses (CWE)
References
- https://github.com/Decemberus/BugHub/blob/main/simple%20and%20beautiful%20shoppiBroken Link
- https://vuldb.com/?ctiid.223397Permissions RequiredThird Party Advisory
- https://vuldb.com/?id.223397Third Party Advisory
- https://github.com/Decemberus/BugHub/blob/main/simple%20and%20beautiful%20shoppiBroken Link
- https://vuldb.com/?ctiid.223397Permissions RequiredThird Party Advisory
- https://vuldb.com/?id.223397Third Party Advisory
FAQ
What is CVE-2023-1497?
CVE-2023-1497 is a vulnerability with a CVSS score of 6.3 (MEDIUM). A vulnerability was found in SourceCodester Simple and Nice Shopping Cart Script 1.0. It has been rated as critical. This issue affects some unknown processing of the file uploaderm.php. The manipulat...
How severe is CVE-2023-1497?
CVE-2023-1497 has been rated MEDIUM with a CVSS base score of 6.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-1497?
Check the references section above for vendor advisories and patch information. Affected products include: Simple And Nice Shopping Cart Script Project Simple And Nice Shopping Cart Script.