CVE-2006-0922

Name of the Vulnerable Software and Affected Versions CubeCart versions 3.0 through 3.6

Description The issue arises from a missing auth.inc.php include, which results in an absolute path traversal vulnerability in FileUpload in connector.php. This allows remote attackers to upload arbitrary files via a modified CurrentFolder parameter in a direct request to "admin/filemanager/upload.php".

Recommendations For CubeCart versions 3.0 through 3.6, ensure that the auth.inc.php include is properly added to prevent unauthorized access. As a temporary workaround, consider restricting access to the "admin/filemanager/upload.php" endpoint and the FileUpload function in connector.php until a proper fix is applied. Avoid using the CurrentFolder parameter in the affected API endpoint until the issue is resolved.