CVE-2006-0099 Information

Description

PHP remote file include vulnerability in (1) include/templates/categories/default.php and (2) certain other include/templates/categories/ PHP scripts in Valdersoft Shopping Cart 3.0 allows remote attackers to execute arbitrary code via a URL in the catalogDocumentRoot parameter.

Reference

http://downloads.securityfocus.com/vulnerabilities/exploits/cijfer-vscxpl.pl http://www.securityfocus.com/bid/16126 https://www.exploit-db.com/exploits/1401