CubeCart connector.php Arbitrary File Upload

2006-02-21T14:47:26
ID OSVDB:23624
Type osvdb
Reporter OSVDB
Modified 2006-02-21T14:47:26

Description

Solution Description

Upgrade to version 3.0.7 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor URL: http://www.cubecart.com/ Other Advisory URL: http://www.nsag.ru/vuln/892.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-02/0433.html CVE-2006-0922 Bugtraq ID: 16796