CubeCart Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2017-2117 - Vulnerability Database
CubeCart Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2017-2117
Medium
Reference:
CVE-2017-2117
Title:
CubeCart Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Overview:
Directory traversal vulnerability in CubeCart versions prior to 6.1.5 allows attacker with administrator rights to read arbitrary files via unspecified vectors.