Description

Directory traversal vulnerability in osCommerce Japanese 2.2ms1j-R8 and earlier allows remote authenticated administrators to read arbitrary files via unspecified vectors.

Remediation

References

CVE-2015-2965

Related Vulnerabilities

MySQL CVE-2019-2791 Vulnerability (CVE-2019-2791)

WordPress Plugin Newsletter by Supsystic SQL Injection (1.5.5)

Dot CMS Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-8600)

WordPress Plugin RSVPMaker SQL Injection (9.2.5)

WordPress Plugin Strong Testimonials Cross-Site Scripting (2.40.0)

Severity

Medium

Classification

CVE-2015-2965 CWE-22

Tags

Missing Update Known Vulnerabilities