Description
In OpenCart 1.4.7 to 1.5.5.1, implemented anti-traversal code in filemanager.php is ineffective and can be bypassed.
Remediation
References
Related Vulnerabilities
WordPress Plugin Sliding Recent Posts Cross-Site Request Forgery (1.0)
SharePoint Heap-based Buffer Overflow Vulnerability (CVE-2025-47169)
WordPress Plugin Video Gallery /w YouTube, Vimeo Multiple Vulnerabilities (8.80)
WordPress Plugin Photo Gallery by 10Web-Mobile-Friendly Image Gallery Cross-Site Scripting (1.5.68)