CVE-2009-20006

Exploit

EPSS 0.05%
Veröffentlicht 16.09.2025 14:33:40
Zuletzt bearbeitet 17.09.2025 14:18:55
Quelle disclosure@vulncheck.com
Teams Watchlist Login
Unerledigt Login

osCommerce versions up to and including 2.2 RC2a contain a vulnerability in its administrative file manager utility (admin/file_manager.php). The interface allows file uploads and edits without sufficient input validation or access control. An unauthenticated attacker can craft a POST request to upload a .php file containing arbitrary code, which is then executed by the server.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 8

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerosCommerce

≫

Produkt osCommerce

Default Statusunknown

Version <= 2.2 RC2a

Version *

Status affected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.153

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
disclosure@vulncheck.com	9.3	0	0	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CWE-434 Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

https://www.oscommerce.com/

https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/unix/webapp/oscommerce_filemanager.rb

https://www.exploit-db.com/exploits/9556

https://www.exploit-db.com/exploits/16899

https://www.vulncheck.com/advisories/oscommerce-arbitrary-php-code-execution

https://nvd.nist.gov/vuln/detail/CVE-2009-20006

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2009-20006

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2009-20006

EUVD