PT-2006-5035 · Zen Cart · Zen Cart

Published

2006-08-17

Updated

2017-07-20

CVE-2006-4218

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Zen Cart versions 1.3.0.2 and earlier

Description A directory traversal issue allows remote attackers to include and possibly execute arbitrary local files by using directory traversal sequences in the typefilter parameter.

Recommendations For Zen Cart versions 1.3.0.2 and earlier, consider restricting access to the typefilter parameter to minimize the risk of exploitation until a patch is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-4218

Affected Products

Zen Cart

PT-2006-5035 · Zen Cart · Zen Cart

CVE-2006-4218

Related Identifiers

Affected Products

References · 7