Shodan
Vulnerabilities
Vulnerable Software
Oscommerce:  Security Vulnerabilities
CVE-2003-1219
Cross-site scripting (XSS) vulnerability in the tep_href_link function in html_output.php for osCommerce before 2.2-MS3 allows remote attackers to inject arbitrary web script or HTML via the osCsid parameter.
CVSS Score
4.3
EPSS Score
0.008
Published
2003-12-31
CVE-2002-1991
PHP file inclusion vulnerability in osCommerce 2.1 execute arbitrary commands via the include_file parameter to include_once.php.
CVSS Score
7.5
EPSS Score
0.051
Published
2002-12-31
CVE-2002-2019
PHP remote file inclusion vulnerability in include_once.php in osCommerce (a.k.a. Exchange Project) 2.1 allows remote attackers to execute arbitrary PHP code via the include_file parameter.
CVSS Score
7.5
EPSS Score
0.041
Published
2002-12-31


Products
Pricing
Contact Us

Shodan ® - All rights reserved