CubeCart Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2017-2117 - Vulnerability Database

CubeCart Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2017-2117

Medium
Reference: CVE-2017-2117
Title: CubeCart Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Overview:

Directory traversal vulnerability in CubeCart versions prior to 6.1.5 allows attacker with administrator rights to read arbitrary files via unspecified vectors.