Vulnerability Description
CubeCart 3.0 through 3.6 does not properly check authorization for an administration session because of a missing auth.inc.php include, which results in an absolute path traversal vulnerability in FileUpload in connector.php (aka upload.php) that allows remote attackers to upload arbitrary files via a modified CurrentFolder parameter in a direct request to admin/filemanager/upload.php.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Devellion | Cubecart | 3.0.0_alpha |
References
- http://securityreason.com/securityalert/482
- http://www.cubecart.com/site/forums/index.php?showtopic=14704
- http://www.cubecart.com/site/forums/index.php?showtopic=14817
- http://www.cubecart.com/site/forums/index.php?showtopic=14825Patch
- http://www.cubecart.com/site/forums/index.php?showtopic=14960
- http://www.cubecart.com/site/forums/index.php?showtopic=14972Patch
- http://www.nsag.ru/vuln/892.html
- http://www.securityfocus.com/archive/1/425931/100/0/threaded
- http://www.securityfocus.com/bid/16796
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24883
- http://securityreason.com/securityalert/482
- http://www.cubecart.com/site/forums/index.php?showtopic=14704
- http://www.cubecart.com/site/forums/index.php?showtopic=14817
- http://www.cubecart.com/site/forums/index.php?showtopic=14825Patch
- http://www.cubecart.com/site/forums/index.php?showtopic=14960
FAQ
What is CVE-2006-0922?
CVE-2006-0922 is a vulnerability with a CVSS score of 5.0 (MEDIUM). CubeCart 3.0 through 3.6 does not properly check authorization for an administration session because of a missing auth.inc.php include, which results in an absolute path traversal vulnerability in Fil...
How severe is CVE-2006-0922?
CVE-2006-0922 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-0922?
Check the references section above for vendor advisories and patch information. Affected products include: Devellion Cubecart.