Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:21 a.m.6 views

CVE-2023-6579

A vulnerability, which was classified as critical, has been found in osCommerce 4. Affected by this issue is some unknown functionality of the file /b2b-supermarket/shopping-cart of the component POST Parameter Handler. The manipulation of the argument estimatecountryid leads to sql injection. Th...

9.8CVSS7.2AI score0.23846EPSS
Exploits3
0day.today
0day.today
added 2023/12/08 12:0 a.m.430 views

osCommerce 4 SQL Injection Vulnerability

Exploit Title: osCommerce 4 - SQL Injection Exploit Author: CraCkEr Date: 22/11/2023 Vendor: osCommerce ltd. Vendor Homepage: https://www.oscommerce.com/ Software Link: https://demo.oscommerce.com/ Demo Link: https://demo.oscommerce.com/b2b-supermarket/ Tested on: Windows 11 Home Impact: Database...

9.8CVSS9.7AI score0.23846EPSS
Exploits3
Cvelist
Cvelist
added 2023/12/07 9:31 p.m.25 views

CVE-2023-6579 osCommerce POST Parameter shopping-cart sql injection

A vulnerability, which was classified as critical, has been found in osCommerce 4. Affected by this issue is some unknown functionality of the file /b2b-supermarket/shopping-cart of the component POST Parameter Handler. The manipulation of the argument estimatecountryid leads to sql injection. Th...

7.5CVSS10AI score0.23846EPSS
Exploits3References3
CVE
CVE
added 2023/12/07 9:31 p.m.38 views

CVE-2023-6579

CVE-2023-6579 affects osCommerce 4, specifically the POST Parameter Handler for /b2b-supermarket/shopping-cart where the argument estimate[country_id] is vulnerable to SQL injection. The issue potentially enables remote exploitation with high impact on confidentiality, integrity, and availability...

9.8CVSS8.8AI score0.23846EPSS
Exploits3References3Affected Software1
Rows per page
Query Builder