CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Oxid-Esales: >> Eshop >> 6.5.2 Security Vulnerabilities

CVE-2023-38330

OXID eShop Enterprise Edition 6.5.0 – 6.5.2 before 6.5.3 allows uploading files with modified headers in the administration area. An attacker can upload a file with a modified header to create a HTTP Response Splitting attack.

CVSS Score

5.3

EPSS Score

0.002

Published

2023-08-02

Page 1

Vulnerabilities

Vulnerable Software

Oxid-Esales: >> Eshop >> 6.5.2 Security Vulnerabilities

Products

Pricing

Contact Us