Unrestricted File Access via Directory Traversal in Add-on Installation
CVE-2023-26691
Currently unrated
What is CVE-2023-26691?
Directory Traversal vulnerability in CS-Cart MultiVendor 4.16.1 allows remote attackers to run arbitrary code via crafted zip file when installing a new add-on.