Bugtraq mailing list archives
Re: OpenCart 1.5.6.4 Directory Traversal Vulnerability
From: Henri Salo <henri () nerv fi>
Date: Sun, 1 Jun 2014 10:40:41 +0300
On Thu, May 29, 2014 at 01:40:54PM +0000, iedb.team () gmail com wrote:
http://iedb.ir/up/imagef-140139785162051-jpg.html # Archive Exploit = http://www.iedb.ir/exploits-1731.html
I was unable to reproduce this issue in OpenCart version 1.5.6.4. From the picture this seems to be path disclosure issue or could you provide working proof-of-concept to exploit directory traversal issue? Did you report this to vendor? Does this have CVE? Did you use any plugins or themes (like Shoppica) or did you have OpenCart as module/extension in some other software? Sadly at the moment this looks like yet another fake/false from iedb. --- Henri Salo
Attachment:
signature.asc
Description: Digital signature
Current thread:
- Re: OpenCart 1.5.6.4 Directory Traversal Vulnerability Henri Salo (Jun 03)