what you don't know can hurt you
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 63 RSS Feed

Files

Oscommerce 2.3.4 XSS / HPP / File Inclusion
Posted Sep 27, 2014
Authored by indoushka

Oscommerce version 2.3.4 suffers from cross site scripting, HTTP parameter pollution, and local file inclusion vulnerabilities.

tags | exploit, web, local, vulnerability, xss, file inclusion
SHA-256 | 8d1dd2e6442e15ac36b712ca7250cbff8a6c970b84e1efbe78af8cdac497642a

Related Files

osCommerce 4 Cross Site Scripting
Posted Apr 30, 2024
Authored by CraCkEr

osCommerce version 4 suffers from a cross site scripting vulnerability. This finding is another vector of attack for this issue already discovered by the same researcher in November of 2023.

tags | exploit, xss
advisories | CVE-2024-4348
SHA-256 | f8285fdf1bc0d4437ae633d7dde7f4f607db4b9ab45579773b774ad89e950ca2
osCommerce 4.13-60075 Shell Upload
Posted Dec 15, 2023
Authored by nu11secur1ty

osCommerce version 4.13-60075 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | ec2851de45716323cc9586ace2e5ab5f4c1232d38a2afff9df61187983d1047d
osCommerce 4 SQL Injection
Posted Dec 8, 2023
Authored by CraCkEr

osCommerce version 4 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2023-6579
SHA-256 | 62e3c86662a5a7dc80a64578c1e8e84e6137000a8e5c4faf36b2fef3dddbaf32
osCommerce 4 Cross Site Scripting
Posted Nov 27, 2023
Authored by CraCkEr

osCommerce version 4 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2023-6296
SHA-256 | 197c3173f23a907c40d117ce76d46f37a52dc01d9fef5c7d5ac0948750777b20
osCommerce 4 Local File Inclusion
Posted Jun 12, 2023
Authored by indoushka

osCommerce version 4 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
SHA-256 | 7cbd3f800121fbd6498c3dbdfab0d4d1fc70c2191d3bab9e42181076af739910
osCommerce Shopping Cart 4 Cross Site Scripting
Posted Sep 26, 2022
Authored by CraCkEr

osCommerce Shopping Cart version 4 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | fc69e57f711d661b929686f94b698df88ccb2c5f0d2030e7b4840f26fe62da93
osCommerce 2.3.4.1 Remote Code Execution
Posted Jul 15, 2021
Authored by Bryan Leong

osCommerce version 2.3.4.1 remote code execution exploit. This is a variant of the original discovery of code execution in this version by Simon Scannell in March of 2018.

tags | exploit, remote, code execution
SHA-256 | 2bb23c70d70bf33f8afa0d2286b9025a5cfeabe779deea7141c7625996c9982e
osCommerce 2.3.4.1 Cross Site Scripting
Posted Nov 25, 2020
Authored by Emre Aslan

osCommerce version 2.3.4.1 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 3a2d13a1bea10737d2fffae795bbf8e8e1456bee046f30ed0b0fc07162a20926
osCommerce 2.3.4.1 SQL Injection
Posted Feb 6, 2019
Authored by Mehmet Emiroglu

osCommerce version 2.3.4.1 suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
SHA-256 | 7f8db9f4e59304f4d92aaa0b162605bd0f19e024b7b035707a7068233624f758
osCommerce 2.3.4.1 Cross Site Request Forgery
Posted Sep 5, 2018
Authored by Hesam Bazvand

osCommerce version 2.3.4.1 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
SHA-256 | 64d21e9c17ef31888252a40c93532ade2145cbbb94a130c30197fd0dc56cbc3a
osCommerce Installer Unauthenticated Code Execution
Posted May 3, 2018
Authored by Daniel Teixeira, Simon Scannell | Site metasploit.com

If the /install/ directory was not removed, it is possible for an unauthenticated attacker to run the "install_4.php" script, which will create the configuration file for the installation. This allows the attacker to inject PHP code into the configuration file and execute it.

tags | exploit, php
SHA-256 | 806d396b8f8393708196c84967f4c3db14adf4f64c443cf3f37029101e6385f9
osCommerce 2.3.4.1 Remote Code Execution
Posted Mar 31, 2018
Authored by Simon Scannell

osCommerce version 2.3.4.1 suffers from a code execution vulnerability.

tags | exploit, code execution
SHA-256 | 3a9c8b3b77bdf3e503378fb0902da7dfcb3e2c29c42deb289a62f986ab00800f
osCommerce Error-based SQL Injection
Posted May 3, 2017
Authored by Project Insecurity, MLT | Site insecurity.zone

TemplateMonster osCommerce prior to version 2.3x suffers from an error-based SQL injection vulnerability.

tags | exploit, web, vulnerability, sql injection
SHA-256 | 38a0fda4c724cdbc0647c49a836ea0b337317dd4887ab047e366bf56eaec7836
osCommerce 2.3.4 Local File Inclusion / Cross Site Request Forgery
Posted Feb 18, 2016
Authored by High-Tech Bridge SA | Site htbridge.com

osCommerce version 2.3.4 suffers from cross site request forgery and local file inclusion vulnerabilities.

tags | exploit, local, vulnerability, file inclusion, csrf
SHA-256 | 0590c4c85647c5c0a02e877aee9bff53f2ee293542d8d20f50cdb9048d52be0f
osCommerce 2.x SQL Injection
Posted Feb 7, 2014
Authored by Ahmed Aboul-Ela

osCommerce version 2.x suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | d32dd50919d8a0c429288d62c1747a59153e7b47726b23268062da0fcd4fefad
osCommerce 2.3.3 Cross Site Request Forgery
Posted Feb 12, 2013
Authored by Jakub Galczyk

osCommerce version 2.3.3 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
SHA-256 | 6899dfd0aba24fae96fc8aca3b04644601579d6527c6c1b6a86f31ffeb009ade
Secunia Security Advisory 50640
Posted Sep 19, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in osCommerce, which can be exploited by malicious users to bypass certain security restrictions.

tags | advisory
SHA-256 | 3da847edbb4ae245ba8e3e47a0eebe85448d30ab5aea728a239b7e362348d2f5
OSCommerce 3.0.2 Cross Site Scripting
Posted Feb 3, 2012
Authored by Alexander Fuchs, Vulnerability Laboratory | Site vulnerability-lab.com

OSCommerce version 3.0.2 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 0a2520ea5c52566aba471703d7a80fc90e05ce97b35a678bdbc29dd0b250e477
Free Way osCommerce Shell Upload / File Disclosure
Posted Oct 19, 2011
Authored by indoushka

Free Way osCommerce suffers from backup related, file disclosure, and shell upload vulnerabilities.

tags | exploit, shell, vulnerability, info disclosure
SHA-256 | deb392a1a7903348d0167f0991e8ddecec1f405715d0e637549f413ad5ea4b4a
osCommerce 2.3.1 Shell Upload
Posted May 15, 2011
Authored by Number 7

osCommerce version 2.3.1 suffers from a shell upload vulnerability.

tags | exploit, shell
SHA-256 | 6f77547245e4435487ff50cceecb12db25a0c48462dd2c5fb75464bdad739078
osCommerce Authentication Bypass
Posted Feb 4, 2011
Authored by Nicolas Krassas

osCommerce suffers from an authentication bypass vulnerability that allows for unsolicited mailing.

tags | exploit, bypass
SHA-256 | b9982ae7b67c17e621dd30b877cc77f1dbcf1eb0ccb066ecfb7e2b9dfdfab542
Allpc 2.5 osCommerce Cross Site Scripting / SQL Injection
Posted Sep 28, 2010
Authored by RoAd_KiLlEr

Allpc version 2.5 osCommerce suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection
SHA-256 | be1cfff787ccfb93678910bb184d5d331a80a512fa0ace5d6ab52ab5103b6ab5
osCommerce Online Merchant Remote File Inclusion
Posted Aug 27, 2010
Authored by LoSt.HaCkEr, aDaM_TRoJaN

osCommerce Online Merchant version 3.0 suffers from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion
SHA-256 | 4e7b280fbeb7d2f5760e10222e458937fbf0a0a99728fb3b37e6c436c9e14c24
EZ-Oscommerce 2.1 Cross Site Request Forgery / File Disclosure
Posted Aug 3, 2010
Authored by indoushka

EZ-Oscommerce version 2.1 suffers from cross site request forgery and file disclosure vulnerabilities.

tags | exploit, vulnerability, info disclosure, csrf
SHA-256 | 82abda5feb659ea7b2f05a5343e2c5e49389139bbc8ea7a0a8490e7f3cb74642
EZ-Oscommerce 3.1 Cross Site Request Forgery / Shell Upload
Posted Aug 3, 2010
Authored by indoushka

EZ-Oscommerce version 3.1 suffers from cross site request forgery and shell upload vulnerabilities.

tags | exploit, shell, vulnerability, csrf
SHA-256 | 211c81a48a423b0e7ca26cd7f0bf68dd51c51146406c5f0a9b5a048e782d346e
Page 1 of 3
Back123Next

File Archive:

May 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    May 1st
    44 Files
  • 2
    May 2nd
    5 Files
  • 3
    May 3rd
    11 Files
  • 4
    May 4th
    0 Files
  • 5
    May 5th
    0 Files
  • 6
    May 6th
    28 Files
  • 7
    May 7th
    3 Files
  • 8
    May 8th
    4 Files
  • 9
    May 9th
    54 Files
  • 10
    May 10th
    12 Files
  • 11
    May 11th
    0 Files
  • 12
    May 12th
    0 Files
  • 13
    May 13th
    18 Files
  • 14
    May 14th
    11 Files
  • 15
    May 15th
    17 Files
  • 16
    May 16th
    13 Files
  • 17
    May 17th
    22 Files
  • 18
    May 18th
    0 Files
  • 19
    May 19th
    0 Files
  • 20
    May 20th
    17 Files
  • 21
    May 21st
    18 Files
  • 22
    May 22nd
    7 Files
  • 23
    May 23rd
    111 Files
  • 24
    May 24th
    27 Files
  • 25
    May 25th
    0 Files
  • 26
    May 26th
    0 Files
  • 27
    May 27th
    6 Files
  • 28
    May 28th
    12 Files
  • 29
    May 29th
    31 Files
  • 30
    May 30th
    0 Files
  • 31
    May 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2022 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close