cs cart
Interesting Paths
# version
/admin.php?version
# login page
/admin.php
LFI / RFI
/classes/phpmailer/class.cs_phpmailer.php?classes_dir=<>
v1.3.3 RCE (Authenticated)
https://www.exploit-db.com/exploits/48891
# upload .phtml under Template Editor
# invoke at /skins/FILE.phtml
Last updated
Was this helpful?