Vulnerability Details CVE-2023-26687
Directory Traversal vulnerability in CS-Cart MultiVendor 4.16.1 allows remote attackers to obtain sensitive information via the product_data parameter in the PDF Add-on.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 77.5%
CVSS Severity
CVSS v3 Score 8.8
Products affected by CVE-2023-26687
-
cpe:2.3:a:cs-cart:cs-cart_multivendor:4.16.1