CVE-2008-6878

EUVD-2008-6838
Directory traversal vulnerability in admin/includes/languages/english.php in Zen Cart 1.3.8a, 1.3.8, and earlier, when .htaccess is not supported, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the _SESSION[language] parameter.  NOTE: the vendor disputes this issue, stating "at worst, the use of this vulnerability will reveal some local file paths.
Path Traversal
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 56%
Affected Products (NVD)
VendorProductVersion
zen_cartzen_cart
1.3.8
zen_cartzen_cart
1.3.8a:a
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://osvdb.org/46913
http://secunia.com/advisories/31039
http://www.attrition.org/pipermail/vim/2008-July/002028.html
http://www.securityfocus.com/bid/30179
http://www.zen-cart.com/forum/showthread.php?t=102802
https://www.exploit-db.com/exploits/6038
http://osvdb.org/46913
http://secunia.com/advisories/31039
http://www.attrition.org/pipermail/vim/2008-July/002028.html
http://www.securityfocus.com/bid/30179
http://www.zen-cart.com/forum/showthread.php?t=102802
https://www.exploit-db.com/exploits/6038