Vulnerability Details CVE-2023-2315
Path Traversal in OpenCart versions 4.0.0.0 to 4.0.2.2 allows an authenticated user with access/modify privilege on the Log component to empty out arbitrary files on the server
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 50.4%
CVSS Severity
CVSS v3 Score 8.1
References
Products affected by CVE-2023-2315
-
cpe:2.3:a:opencart:opencart:4.0.0.0
-
cpe:2.3:a:opencart:opencart:4.0.1.0
-
cpe:2.3:a:opencart:opencart:4.0.1.1
-
cpe:2.3:a:opencart:opencart:4.0.2.0
-
cpe:2.3:a:opencart:opencart:4.0.2.1
-
cpe:2.3:a:opencart:opencart:4.0.2.2