Opencart Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2013-1891
In OpenCart 1.4.7 to 1.5.5.1 implemented anti-traversal code in filemanager.php is ineffective and can be bypassed.
In OpenCart 1.4.7 to 1.5.5.1 implemented anti-traversal code in filemanager.php is ineffective and can be bypassed.