Show filters
12 Total Results
Displaying 11-12 of 12
Sort by:
Attacker Value
Unknown
CVE-2005-0458
Disclosure Date: May 02, 2005 (last updated February 22, 2025)
Cross-site scripting (XSS) vulnerability in contact_us.php in osCommerce 2.2-MS2 allows remote attackers to inject arbitrary web script or HTML via the enquiry parameter.
0
Attacker Value
Unknown
CVE-2004-2021
Disclosure Date: December 31, 2004 (last updated February 22, 2025)
Directory traversal vulnerability in file_manager.php in osCommerce 2.2 allows remote attackers to view arbitrary files via a .. (dot dot) in the filename argument.
0
