Authenticated Arbitrary File Upload to RCE in CubeCart 6.x REST Files API

github.com 2026-05-22查看中文 →

Security AdvisoryCriticalCubeCart

Affected:

CubeCart 6.6.x

Fixed in:

6.7.0

Referenced CVEs: CVE-2026-45053 · 9.1

文章内图片已隐藏以节省流量 · Upgrade to Pro to view images & offline archive

This content was auto-fetched from github.com, cleaned by our LLM pipeline, and translated to English. View original.

More from this source

Rancher CVE-2024-4439 YAML Command Injection Vulnerability Advisory 2026-06-19 AIL Framework Path Traversal Vulnerability Fix Details 2026-06-19 Armeria xDS SDS Arbitrary File Read Vulnerability Analysis 2026-06-19 Bogo REST API Unauthorized Access Vulnerability and Patch 2026-06-19 ts-deepmerge Prototype Pollution DoS Vulnerability and POC 2026-06-19

Offline Archive

Offline screenshot & PDF are Pro-exclusive