Shopsystem-forum » K&s Shopsoftware : Security Vulnerabilities, CVEs, CVSS score >= 1
Unrestricted file upload vulnerability in admin/editor/images.php in K&S Shopsoftware allows remote attackers to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via a direct request to the file in images/upload/.
Max CVSS
6.8
EPSS Score
4.82%
Published
2009-04-29
Updated
2017-09-29
1 vulnerabilities found