ByteOS Network

NVD Vulnerability Details :

CVE-2018-11494

Analyzed

Source-cve@mitre.org

Published At-26 May, 2018 | 20:29

Updated At-29 Jun, 2018 | 18:51

The "program extension upload" feature in OpenCart through 3.0.2.0 has a six-step process (upload, install, unzip, move, xml, remove) that allows attackers to execute arbitrary code if the remove step is skipped, because the attacker can discover a secret temporary directory name (containing 10 random digits) via a directory traversal attack involving language_info['code'].

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.0	8.0	HIGH	CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Primary	2.0	6.0	MEDIUM	AV:N/AC:M/Au:S/C:P/I:P/A:P

CPE Matches

opencart>>opencart>>Versions up to 3.0.2.0(inclusive)

cpe:2.3:a:opencart:opencart:*:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-22	Primary	nvd@nist.gov
CWE-434	Primary	nvd@nist.gov

References

Hyperlink	Source	Resource
http://www.bigdiao.cc/2018/05/24/Opencart-v3-0-2-0/	cve@mitre.org	Exploit Third Party Advisory

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History