OpenCart 'fckeditor' Arbitrary File Upload Vulnerability Network Vulnerability

Summary

OpenCart is prone to an arbitrary-file-upload vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to upload arbitrary files to the affected computer this can result in arbitrary code execution within the context of the vulnerable application. OpenCart 1.4.9.1 is vulnerable other versions may also be affected.

References

http://www.opencart.com
https://www.securityfocus.com/bid/43325

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 4.6 AV:N/AC:H/Au:S/C:P/I:P/A:P

Related Vulnerabilities

Apache Archiva Multiple Vulnerabilities
/doc directory browsable ?
Apache ActiveMQ 'Cron Jobs' Cross Site Scripting Vulnerability
Adobe ColdFusion Multiple Full Path Disclosure Vulnerabilities
Apache Struts2/XWork Remote Command Execution Vulnerability

Take action and discover your vulnerabilities