CVE-2017-2090 | HackTesting

Directory traversal vulnerability in CubeCart versions prior to 6.1.4 allows remote authenticated attackers to read arbitrary files via unspecified vectors.

References

http://jvn.jp/en/jp/JVN73182875/index.html

https://support.cybozu.com/ja-jp/article/9499

http://www.securityfocus.com/bid/96429