Arbitrary Command Execution in Quikstore Shopping Cart via URL Metacharacters

Arbitrary Command Execution in Quikstore Shopping Cart via URL Metacharacters

CVE-2000-1223 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

quikstore.cgi in Quikstore Shopping Cart allows remote attackers to execute arbitrary commands via shell metacharacters in the URL portion of an HTTP GET request.

Learn more about our Web Application Penetration Testing UK.