CVE-2023-40532
CVSS 3.1 Score 4.3 of 10 (medium)
Details
Published Sep 27, 2023
Updated: Sep 28, 2023
CWE ID 22
Summary
CVE-2023-40532 is a path traversal vulnerability affecting Welcart e-Commerce platforms from versions 2.7 to 2.8.21. This issue grants users with author or higher privileges the ability to access partial information of files on the web server by manipulating the file path. Successful exploitation could lead to unintended file disclosures and potential security breaches. It is recommended that affected users upgrade to the latest version of Welcart e-Commerce to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share