CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Tomatocart: >> Tomatocart >> 1.2.0 Security Vulnerabilities

CVE-2012-5907

Directory traversal vulnerability in json.php in TomatoCart 1.2.0 Alpha 2 and possibly earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the module parameter in a "3" action.

CVSS Score

5.0

EPSS Score

0.143

Published

2012-11-17

Page 1

Vulnerabilities

Vulnerable Software

Tomatocart: >> Tomatocart >> 1.2.0 Security Vulnerabilities

Products

Pricing

Contact Us