N/A

Path traversal vulnerability in the administrative panel in KonaKart eCommerce Platform version 8.7 and earlier could allow an attacker to download system files, as well as upload specially crafted JSP files and in turn gain access to the server.

N/A

N/A

DS Data Systems KonaKart eCommerce Platform 路径遍历漏洞

DS Data Systems KonaKart eCommerce Platform是英国DS Data Systems公司的一套基于Java的电子商务软件。该软件提高购物车、付款和订单汇总等模块。 DS Data Systems KonaKart eCommerce Platform 8.7及之前版本中的管理面板存在路径遍历漏洞。攻击者可利用该漏洞下载系统文件，上传特制的JSP文件，获取服务器的访问权限。

N/A

N/A