CVE-2006-5727

CVE-2006-5727 · MEDIUM Severity

AV:N/AC:H/AU:N/C:P/I:P/A:P

PHP remote file inclusion vulnerability in admin/controls/cart.php in sazcart 1.5 allows remote attackers to execute arbitrary PHP code via the (1) _saz[settings][shippingfolder] and (2) _saz[settings][taxfolder] parameters.

Learn more about our Web Application Penetration Testing UK.