osCommerce Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2015-2965 - Vulnerability Database

osCommerce

osCommerce Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2015-2965

Medium

Reference: CVE-2015-2965

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2015-2965

Title: osCommerce Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability

Overview:

Directory traversal vulnerability in osCommerce Japanese 2.2ms1j-R8 and earlier allows remote authenticated administrators to read arbitrary files via unspecified vectors.