Description

Directory traversal vulnerability in CubeCart versions prior to 6.1.4 allows remote authenticated attackers to read arbitrary files via unspecified vectors.

Remediation

References

CVE-2017-2090

Related Vulnerabilities

Perl Out-of-bounds Write Vulnerability (CVE-2018-18311)

Apache read beyond bounds in mod_isapi Vulnerability (CVE-2022-28330)

WordPress Plugin Yoast SEO Cross-Site Scripting (3.2.5)

Oracle JRE CVE-2013-1569 Vulnerability (CVE-2013-1569)

PHP-Fusion Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-1807)

Severity

Medium

Classification

CVE-2017-2090 CWE-22 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities