Lucene search
JpcertCVELIST:CVE-2022-40199HistorySep 27, 2022 - 1:55 a.m.
CVE-2022-40199
2022-09-2701:55:17
jpcert
www.cve.org
3
cve-2022-40199
directory traversal
ec-cube 3
ec-cube 4
remote attacker
administrative privilege
Directory traversal vulnerability in EC-CUBE 3 series (EC-CUBE 3.0.0 to 3.0.18-p4 ) and EC-CUBE 4 series (EC-CUBE 4.0.0 to 4.1.2) allows a remote authenticated attacker with an administrative privilege to obtain the product’s directory structure information.
CNA Affected
[
{
"product": "EC-CUBE 3 series and EC-CUBE 4 series",
"vendor": "EC-CUBE CO.,LTD.",
"versions": [
{
"status": "affected",
"version": "EC-CUBE 3.0.0 to 3.0.18-p4 and EC-CUBE 4.0.0 to 4.1.2"
}
]
}
]Related
osv
osv
EC-CUBE Directory traversal vulnerability
2022-09-28 00:00:16
CVE-2022-40199
2022-09-27 23:15:16
cve
cve
CVE-2022-40199
2022-09-27 23:15:16
prion
prion
Directory traversal
2022-09-27 23:15:00
github
github
EC-CUBE Directory traversal vulnerability
2022-09-28 00:00:16
nvd
nvd
CVE-2022-40199
2022-09-27 23:15:16
jvn
jvn
JVN#21213852: Multiple vulnerabilities in EC-CUBE
2022-09-15 00:00:00