Lucene search
K

5 matches found

EUVD
EUVD
added 2026/02/27 6:31 p.m.6 views

EUVD-2019-19721

osCommerce 2.3.4.1 contains a SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the reviewsid parameter. Attackers can send GET requests to productreviewswrite.php with malicious reviewsid values using boolean-based SQL...

8.8CVSS6AI score0.00327EPSS
Exploits1References4
OSV
OSV
added 2026/02/27 6:16 p.m.6 views

CVE-2019-25495

osCommerce 2.3.4.1 contains a SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the reviewsid parameter. Attackers can send GET requests to productreviewswrite.php with malicious reviewsid values using boolean-based SQL...

7.5CVSS5.9AI score
Exploits0References3
NVD
NVD
added 2026/02/27 6:16 p.m.5 views

CVE-2019-25495

osCommerce 2.3.4.1 contains a SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the reviewsid parameter. Attackers can send GET requests to productreviewswrite.php with malicious reviewsid values using boolean-based SQL...

8.8CVSS0.00327EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/02/27 5:23 p.m.21 views

CVE-2019-25495 osCommerce 2.3.4.1 SQL Injection via reviews_id Parameter

osCommerce 2.3.4.1 contains a SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the reviewsid parameter. Attackers can send GET requests to productreviewswrite.php with malicious reviewsid values using boolean-based SQL...

8.8CVSS0.00327EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/02/27 5:23 p.m.7 views

CVE-2019-25495 osCommerce 2.3.4.1 SQL Injection via reviews_id Parameter

osCommerce 2.3.4.1 contains a SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the reviewsid parameter. Attackers can send GET requests to productreviewswrite.php with malicious reviewsid values using boolean-based SQL...

8.8CVSS6AI score0.00327EPSS
Exploits1References3
Rows per page
Query Builder