Directory traversal vulnerability in asaanCart 0.9 allows remote attackers to include arbitrary local files via a .. (dot dot) in the page parameter to index.php.Referenceshttp://www.securityfocus.com/bid/52498https://exchange.xforce.ibmcloud.com/vulnerabilities/74065http://www.exploit-db.com/exploits/18599
