CubeCart Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2017-2098 - Vulnerability Database

CubeCart Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2017-2098

Medium
Reference: CVE-2017-2098
Title: CubeCart Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Overview:

Directory traversal vulnerability in CubeCart versions prior to 6.1.4 allows remote authenticated attackers to read arbitrary files via unspecified vectors.