Intrusion Prevention

SeeCommerce.Owimg.PHP.File.Inclusion

Description

A PHP remote file inclusion vulnerability in owimg.php3 in See-Commerce 1.0.625 and earlier, allows remote attackers to execute arbitrary PHP code via a URL in the path parameter.

Affected Products

See-Commerce 1.0.625 and earlier.

Impact

File inclusion.

Recommended Actions

Currently we are not aware of any vendor-supplied patches for this issue.

CVE References

CVE-2006-4121