CVE-2024-34832

2024-06-0615:15:44

[email protected]

web.nvd.nist.gov

cubecart

directory traversal

vulnerability

arbitrary code

crafted file

uploaded file

parameters

7.9 High

AI Score

Confidence

Low

0 Low

EPSS

Percentile

0.0%

JSON

Directory Traversal vulnerability in CubeCart v.6.5.5 and before allows an attacker to execute arbitrary code via a crafted file uploaded to the _g and node parameters.

References

github.com/julio-cfa/CVE-2024-34832