Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

Prion
Prionadded 2011/09/24 12:55 a.m.10 views

Information disclosure

osCommerce 3.0a5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by redirect.php...

5CVSS6.6AI score0.00319EPSS
Exploits0References4Affected Software1
CVE
CVEadded 2011/09/24 12:0 a.m.51 views

CVE-2011-3767

The CVE-2011-3767 issue affects osCommerce 3.0a5 and allows a remote attacker to obtain sensitive information by directly requesting a .php file (demonstrated via redirect.php). The vulnerability causes an error message that reveals the installation path. Exploit details, affected versions beyond...

5CVSS6.3AI score0.00319EPSS
Exploits0References4Affected Software1
OpenVAS
OpenVASadded 2010/05/04 12:0 a.m.8 views

osCommerce Local File Include and HTML Injection Vulnerabilities

osCommerce is prone to a local file-include vulnerability and an HTML- injection vulnerability because it fails to properly sanitize user- supplied input. An attacker can exploit the local file-include vulnerability using directory- traversal strings to execute local files within the context of t...

7.2AI score
Exploits0References3
Rows per page
Query Builder