Directory traversal vulnerability in commerce.cgi CGI program allows remote attackers to read arbitrary files via a .. (dot dot) attack in the page parameter.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Commerce.cgi |
Carey_internet_service |
2.0.1 (including) |
2.0.1 (including) |
References