Description
PHP file inclusion vulnerability in osCommerce 2.1 execute arbitrary commands via the include_file parameter to include_once.php.
Remediation
References
Related Vulnerabilities
Magento Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-8093)
Ruby on Rails CVE-2018-16477 Vulnerability (CVE-2018-16477)
WordPress Plugin Pixabay Images Multiple Vulnerabilities (2.3)
WordPress Plugin Database Sync Cross-Site Scripting (0.4)
WordPress Plugin Social Sharing-Sassy Social Share PHP Object Injection (3.3.23)