CVE-2006-0922

Devellion Cubecart - Path Traversal

Title source: rule

Description

CubeCart 3.0 through 3.6 does not properly check authorization for an administration session because of a missing auth.inc.php include, which results in an absolute path traversal vulnerability in FileUpload in connector.php (aka upload.php) that allows remote attackers to upload arbitrary files via a modified CurrentFolder parameter in a direct request to admin/filemanager/upload.php.

Exploits (1)

exploitdb WORKING POC VERIFIED

by NSA Group · htmlwebappsphp

https://www.exploit-db.com/exploits/27304

View Code ZIP pw:eip

References (10)

[Patch] http://www.cubecart.com/site/forums/index.php?showtopic=14972

[Various Sources] http://www.cubecart.com/site/forums/index.php?showtopic=14960

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/24883

[Third Party Advisory] http://securityreason.com/securityalert/482

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/425931/100/0/threaded

[Various Sources] http://www.cubecart.com/site/forums/index.php?showtopic=14817

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/16796

[Patch] http://www.cubecart.com/site/forums/index.php?showtopic=14825

[Various Sources] http://www.cubecart.com/site/forums/index.php?showtopic=14704

[Various Sources] http://www.nsag.ru/vuln/892.html

Scores

EPSS 0.0880

EPSS Percentile 92.5%

Details

Status published

Products (11)

devellion/cubecart 3.0.0_alpha

devellion/cubecart 3.0.0_alpha-2

devellion/cubecart 3.0.0_alpha-rgf

devellion/cubecart 3.0.0_beta

devellion/cubecart 3.0.0_final

devellion/cubecart 3.0.1

devellion/cubecart 3.0.2

devellion/cubecart 3.0.3

devellion/cubecart 3.0.4

devellion/cubecart 3.0.5

... and 1 more

Published Feb 28, 2006

Tracked Since Feb 18, 2026