cs cart

Interesting Paths

# version
/admin.php?version

# login page
/admin.php

LFI / RFI

/classes/phpmailer/class.cs_phpmailer.php?classes_dir=<>

v1.3.3 RCE (Authenticated)

  • https://www.exploit-db.com/exploits/48891

# upload .phtml under Template Editor
# invoke at /skins/FILE.phtml
PreviouscorehttpNextcse online bookstore

Last updated

Was this helpful?