CVE-2000-0635

Description

The view_page.html sample page in the MiniVend shopping cart program allows remote attackers to execute arbitrary commands via shell metacharacters.

Affected products

• akopia / minivend3.0 – 3.0
• akopia / minivend4.0 – 4.0
• akopia / minivend4.0.4 – 4.0.4

References

• MISChttp://www.zdnet.com/zdnn/stories/news/0%2C4586%2C2600258%2C00.html
• MISChttp://archives.neohapsis.com/archives/bugtraq/2000-07/0150.html
• MISChttp://www.securityfocus.com/bid/1449
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/4880