Description

Directory traversal vulnerability in osCommerce Japanese 2.2ms1j-R8 and earlier allows remote authenticated administrators to read arbitrary files via unspecified vectors.

Remediation

References

CVE-2015-2965

Related Vulnerabilities

Ruby on Rails Improper Input Validation Vulnerability (CVE-2013-1856)

Ruby on Rails Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-3463)

WordPress Plugin MapPress Maps for WordPress Security Bypass (2.54.5)

MyBB Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-19202)

OpenSSL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2178)

Severity

Medium

Classification

CVE-2015-2965 CWE-22

Tags

Missing Update Known Vulnerabilities