CVE-2001-0985 Information

Description

shop.pl in Hassan Consulting Shopping Cart 1.23 allows remote attackers to execute arbitrary commands via shell metacharacters in the \page\ parameter.

Reference

http://www.irata.com/shopver.html http://www.securityfocus.com/archive/1/212827 http://www.securityfocus.com/bid/3308 https://exchange.xforce.ibmcloud.com/vulnerabilities/7106