cpe:/a:caupo:cauposhop_classic:3.01 cpe:/a:caupo:cauposhop_pro:2.0 cpe:/a:caupo:cauposhop_pro:2.1 cpe:/a:caupo:cauposhop_pro:3.70 CVE-2011-4832 2011-12-14T22:57:34.933-05:00 2017-08-28T21:30:35.973-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2011-12-15T14:17:00.000-05:00 EXPLOIT-DB 18066 SECUNIA 46704 BID 50530 OSVDB 76871 XF cauposhop-index-directory-traversal(71136) Directory traversal vulnerability in CaupoShop Pro 2.x, CaupoShop Classic 3.01, and CaupoShop Pro 3.70 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the template parameter in a template action.