CubeCart Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2017-2090 - Vulnerability Database
CubeCart Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2017-2090
Medium
Reference:
CVE-2017-2090
Title:
CubeCart Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Overview:
Directory traversal vulnerability in CubeCart versions prior to 6.1.4 allows remote authenticated attackers to read arbitrary files via unspecified vectors.