ShopXO 6.4.0 is vulnerable to File Upload in ThemeDataService.php.
The vulnerability results from insufficient validation of types and content of uploaded files in the ThemeDataService.php component responsible for theme handling. An attacker can upload a file of dangerous type (e.g., PHP script) without needing permissions or user interaction. Once the malicious file is placed on the server, it can be executed remotely in the context of the web application.
Successful exploitation of this vulnerability allows an attacker to execute code remotely (RCE) on the server, which may lead to complete takeover of the application, data theft, and violation of system integrity and availability.
Apply patches available from the vendor according to the references. Temporarily, it is recommended to restrict access to file upload functionality at the firewall or web server level and monitor application directories for unauthorized files.
ShopXO version 6.4.0
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HShopxo
APPShopxo6.4.0
Related vulnerabilities
ShopXO v2.2.5 and below was discovered to contain a system re-install vulnerability via the Add function in ap...
Incorrect Access Control in Shopxo v1.4.0 and v1.5.0 allows remote attackers to gain privileges in "/index.php...
A remote command execution vulnerability in shopxo 1.9.3 allows an attacker to upload malicious code generated...
An issue was discovered in ShopXO 1.2.0. In the application\install\controller\Index.php file, there is no val...
An issue was discovered in ShopXO CMS 2.2.0. After entering the management page, there is an arbitrary file up...