Ifx Cupu Us

**Name of the Vulnerable Software and Affected Versions** Midicart (affected versions not specified) **Description** The issue concerns an unrestricted file upload vulnerability. It allows remote authenticated users to upload arbitrary files, possibly including .php files, to the images/ directory under the web root through the admin/add.php endpoint. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Midicart (affected versions not specified) **Description** The issue allows remote attackers to manipulate the total price of a shopping cart by entering negative numbers in the `Qty` field of the `viewcart` function in Midicart. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.