What the vulnerability does

01Description

In OpenCart 1.4.7 to 1.5.5.1, implemented anti-traversal code in filemanager.php is ineffective and can be bypassed.

Key dates

02Disclosure timeline

June 24, 2022 CVE published
August 6, 2024 Record updated