CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
76.1%
Unspecified vulnerability in OXID eShop Professional, Enterprise, and Community Edition before 4.1.0 allows remote attackers to gain administrator privileges and access the shop backend via a crafted parameter.
Vendor | Product | Version | CPE |
---|---|---|---|
oxidforge | oxid_eshop | 4.0.0.0_13895 | cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.0_13895:*:community_edition:*:*:*:*:* |
oxidforge | oxid_eshop | 4.0.0.0_13895 | cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.0_13895:*:enterprise_edition:*:*:*:*:* |
oxidforge | oxid_eshop | 4.0.0.0_13895 | cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.0_13895:*:pro_edition:*:*:*:*:* |
oxidforge | oxid_eshop | 4.0.0.0_13934 | cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.0_13934:*:community_edition:*:*:*:*:* |
oxidforge | oxid_eshop | 4.0.0.0_13934 | cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.0_13934:*:enterprise_edition:*:*:*:*:* |
oxidforge | oxid_eshop | 4.0.0.0_13934 | cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.0_13934:*:pro_edition:*:*:*:*:* |
oxidforge | oxid_eshop | 4.0.0.0_14260 | cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.0_14260:*:community_edition:*:*:*:*:* |
oxidforge | oxid_eshop | 4.0.0.0_14260 | cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.0_14260:*:enterprise_edition:*:*:*:*:* |
oxidforge | oxid_eshop | 4.0.0.0_14260 | cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.0_14260:*:pro_edition:*:*:*:*:* |
oxidforge | oxid_eshop | 4.0.0.1_14455 | cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.1_14455:*:community_edition:*:*:*:*:* |