Description
OpenCart through 3.0.2.0 allows directory traversal in the editDownload function in admin\model\catalog\download.php via admin/index.php?route=catalog/download/edit, related to the download_id. For example, an attacker can download ../../config.php.
Remediation
References
Related Vulnerabilities
WordPress Plugin BuddyBoss Media Cross-Site Scripting (3.0.3)
Atlassian Jira CVE-2021-39116 Vulnerability (CVE-2021-39116)
WordPress Plugin Slimstat Analytics Cross-Site Scripting (3.5.5)
ownCloud Other Vulnerability (CVE-2013-2089)
WordPress Plugin Alpine PhotoTile for Instagram Cross-Site Scripting (1.2.7.4)