Description
osCommerce 2.3.4.1 has an incomplete '.htaccess' for blacklist filtering in the "product" page. Remote authenticated administrators can upload new '.htaccess' files (e.g., omitting .php) and subsequently achieve arbitrary PHP code execution via a /catalog/admin/categories.php?cPath=&action=new_product URI.
Remediation
References
Related Vulnerabilities
MySQL CVE-2022-21318 Vulnerability (CVE-2022-21318)
WordPress Plugin Ultimate Appointment Booking & Scheduling Cross-Site Scripting (1.1.9)
WordPress Plugin youForms for WordPress-Creating Forms for CopeCart Cross-Site Scripting (1.0.5)
WordPress Plugin WP Mail Log Cross-Site Scripting (1.1.1)
WordPress Plugin WP REST API (WP API) Information Disclosure (1.2)