Description

Directory traversal vulnerability in CubeCart versions prior to 6.1.5 allows attacker with administrator rights to read arbitrary files via unspecified vectors.

Remediation

References

CVE-2017-2117

Related Vulnerabilities

WordPress Plugin Image Slider by Ays-Responsive Slider and Carousel SQL Injection (2.4.9)

WordPress Plugin MP3-jPlayer Multiple Cross-Site Request Forgery Vulnerabilities (2.7.3)

PostgreSQL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-3167)

WordPress Plugin Quiz and Survey Master (QSM)-Easy Quiz and Survey Maker Multiple Vulnerabilities (8.0.4)

WordPress Plugin DELUCKS SEO Unspecified Vulnerability (1.2.2)

Severity

Medium

Classification

CVE-2017-2117 CWE-22 CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Tags

Missing Update Known Vulnerabilities