Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 11:27 a.m.11 views

CVE-2013-3650

Directory traversal vulnerability in the lfCheckFileName function in data/class/pages/LCPageResizeImage.php in LOCKON EC-CUBE before 2.12.5 allows remote attackers to read arbitrary image files via vectors involving the image parameter to resizeimage.php, a different vulnerability than...

5CVSS6.5AI score0.01862EPSS
Exploits0References1
Prion
Prion
added 2013/06/30 7:28 p.m.15 views

Directory traversal

Directory traversal vulnerability in LOCKON EC-CUBE 2.12.0 through 2.12.4 allows remote attackers to read arbitrary image files via vectors related to data/class/SCCheckError.php and data/class/SCFormParam.php, a different vulnerability than CVE-2013-3650...

5CVSS6.9AI score0.01862EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2013/06/29 7:0 p.m.48 views

CVE-2013-3650

CVE-2013-3650 is a directory traversal vulnerability in LOCKON EC-CUBE, affecting versions before 2.12.5. The flaw resides in the lfCheckFileName function used by resize_image.php, allowing remote attackers to read arbitrary image files via the image parameter. This is tied to EC-CUBE’s data/clas...

5CVSS6.7AI score0.01862EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2013/06/29 7:0 p.m.26 views

CVE-2013-3650

Directory traversal vulnerability in the lfCheckFileName function in data/class/pages/LCPageResizeImage.php in LOCKON EC-CUBE before 2.12.5 allows remote attackers to read arbitrary image files via vectors involving the image parameter to resizeimage.php, a different vulnerability than...

6.4AI score0.01862EPSS
Exploits0References5
Rows per page
Query Builder