A vulnerability was found in OpenCart up to 4.0.2.2 (E-Commerce Management Software) and classified as critical. Affected by this issue is some unknown functionality of the component Log Handler. The manipulation with an unknown input leads to a path traversal vulnerability. Using CWE to declare the problem leads to CWE-22. The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory. Impacted is confidentiality, integrity, and availability. CVE summarizes:

Path Traversal in OpenCart versions 4.0.0.0 to 4.0.2.2 allows an authenticated user with access/modify privilege on the Log component to empty out arbitrary files on the server

The weakness was published 09/27/2023. The advisory is shared for download at starlabs.sg. This vulnerability is handled as CVE-2023-2315 since 04/27/2023. There are neither technical details nor an exploit publicly available. The MITRE ATT&CK project declares the attack technique as T1006.

Applying the patch 0a8dd91e385f70e42795380009fd644224c1bc97 is able to eliminate this problem. The bugfix is ready for download at github.com.

Productinfo

Type

• E-Commerce Management Software

Name

• OpenCart

Version

• 4.0.2.0
• 4.0.2.1
• 4.0.2.2

License

• open-source

CPE 2.3info

• 🔒
• 🔒
• 🔒

CPE 2.2info

• 🔒
• 🔒
• 🔒

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion