Opencart Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2013-1891 - Vulnerability Database

Opencart Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2013-1891

Medium
Reference: CVE-2013-1891
Title: Opencart Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Overview:

In OpenCart 1.4.7 to 1.5.5.1 implemented anti-traversal code in filemanager.php is ineffective and can be bypassed.