Description
Directory traversal vulnerability in file_manager.php in osCommerce 2.2 allows remote attackers to view arbitrary files via a .. (dot dot) in the filename argument.
Remediation
References
Related Vulnerabilities
WordPress Plugin Limit Login Attempts Reloaded Security Bypass (2.17.3)
WordPress Plugin Z-URL Preview Cross-Site Scripting (1.6.2)
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-7827)
WordPress Plugin WPS Hide Login Cross-Site Request Forgery (1.0)
WordPress Plugin TC Custom JavaScript Cross-Site Scripting (1.2.1)