Directory traversal vulnerability in file_manager.php in osCommerce 2.2 allows remote attackers to view arbitrary files via a .. (dot dot) in the filename argument.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Oscommerce | Oscommerce | 2.2_ms3 | 2.2_ms3 |
Oscommerce | Oscommerce | 2.2_ms1 | 2.2_ms1 |
Oscommerce | Oscommerce | 2.2_ms2 | 2.2_ms2 |
Oscommerce | Oscommerce | 2.2_cvs | 2.2_cvs |
Oscommerce | Oscommerce | 2.1 | 2.1 |