Description

osCommerce Phoenix CE before 1.0.5.4 allows OS command injection remotely. Within admin/mail.php, a from POST parameter can be passed to the application. This affects the PHP mail function, and the sendmail -f option.

Remediation

References

CVE-2020-27976

Related Vulnerabilities

WordPress Plugin MailPoet-emails and newsletters in WordPress Cross-Site Scripting (3.23.1)

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2015-5264)

WordPress Plugin Cooked-Recipe Cross-Site Scripting (1.7.9)

WordPress Plugin WP Google Review Slider SQL Injection (11.7)

WordPress Plugin WooCommerce Checkout Manager Cross-Site Request Forgery (4.3)

Severity

Critical

Classification

CVE-2020-27976 CWE-138 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities