exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New
Showing 1 - 25 of 39 RSS Feed

Files

oscommerce-xss.txt
Posted Nov 22, 2006
Authored by Lostmon | Site lostmon.blogspot.com

osCommerce contains a flaw in the admin section that allows a remote cross site scripting attack.

tags | exploit, remote, xss
SHA-256 | 9dd57fe31faf9453447a5f66dddee562bd6b473276ce0b63430fd638f9e4f477

Related Files

osCommerce 4 Cross Site Scripting
Posted Apr 30, 2024
Authored by CraCkEr

osCommerce version 4 suffers from a cross site scripting vulnerability. This finding is another vector of attack for this issue already discovered by the same researcher in November of 2023.

tags | exploit, xss
advisories | CVE-2024-4348
SHA-256 | f8285fdf1bc0d4437ae633d7dde7f4f607db4b9ab45579773b774ad89e950ca2
osCommerce 4.13-60075 Shell Upload
Posted Dec 15, 2023
Authored by nu11secur1ty

osCommerce version 4.13-60075 suffers from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | ec2851de45716323cc9586ace2e5ab5f4c1232d38a2afff9df61187983d1047d
osCommerce 4 SQL Injection
Posted Dec 8, 2023
Authored by CraCkEr

osCommerce version 4 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
advisories | CVE-2023-6579
SHA-256 | 62e3c86662a5a7dc80a64578c1e8e84e6137000a8e5c4faf36b2fef3dddbaf32
osCommerce 4 Cross Site Scripting
Posted Nov 27, 2023
Authored by CraCkEr

osCommerce version 4 suffers from a cross site scripting vulnerability.

tags | exploit, xss
advisories | CVE-2023-6296
SHA-256 | 197c3173f23a907c40d117ce76d46f37a52dc01d9fef5c7d5ac0948750777b20
osCommerce 4 Local File Inclusion
Posted Jun 12, 2023
Authored by indoushka

osCommerce version 4 suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion
SHA-256 | 7cbd3f800121fbd6498c3dbdfab0d4d1fc70c2191d3bab9e42181076af739910
osCommerce Shopping Cart 4 Cross Site Scripting
Posted Sep 26, 2022
Authored by CraCkEr

osCommerce Shopping Cart version 4 suffers from a cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | fc69e57f711d661b929686f94b698df88ccb2c5f0d2030e7b4840f26fe62da93
osCommerce 2.3.4.1 Remote Code Execution
Posted Jul 15, 2021
Authored by Bryan Leong

osCommerce version 2.3.4.1 remote code execution exploit. This is a variant of the original discovery of code execution in this version by Simon Scannell in March of 2018.

tags | exploit, remote, code execution
SHA-256 | 2bb23c70d70bf33f8afa0d2286b9025a5cfeabe779deea7141c7625996c9982e
osCommerce 2.3.4.1 Cross Site Scripting
Posted Nov 25, 2020
Authored by Emre Aslan

osCommerce version 2.3.4.1 suffers from a persistent cross site scripting vulnerability.

tags | exploit, xss
SHA-256 | 3a2d13a1bea10737d2fffae795bbf8e8e1456bee046f30ed0b0fc07162a20926
osCommerce 2.3.4.1 SQL Injection
Posted Feb 6, 2019
Authored by Mehmet Emiroglu

osCommerce version 2.3.4.1 suffers from multiple remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, sql injection
SHA-256 | 7f8db9f4e59304f4d92aaa0b162605bd0f19e024b7b035707a7068233624f758
osCommerce 2.3.4.1 Cross Site Request Forgery
Posted Sep 5, 2018
Authored by Hesam Bazvand

osCommerce version 2.3.4.1 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
SHA-256 | 64d21e9c17ef31888252a40c93532ade2145cbbb94a130c30197fd0dc56cbc3a
osCommerce Installer Unauthenticated Code Execution
Posted May 3, 2018
Authored by Daniel Teixeira, Simon Scannell | Site metasploit.com

If the /install/ directory was not removed, it is possible for an unauthenticated attacker to run the "install_4.php" script, which will create the configuration file for the installation. This allows the attacker to inject PHP code into the configuration file and execute it.

tags | exploit, php
SHA-256 | 806d396b8f8393708196c84967f4c3db14adf4f64c443cf3f37029101e6385f9
osCommerce 2.3.4.1 Remote Code Execution
Posted Mar 31, 2018
Authored by Simon Scannell

osCommerce version 2.3.4.1 suffers from a code execution vulnerability.

tags | exploit, code execution
SHA-256 | 3a9c8b3b77bdf3e503378fb0902da7dfcb3e2c29c42deb289a62f986ab00800f
osCommerce 2.3.4 Local File Inclusion / Cross Site Request Forgery
Posted Feb 18, 2016
Authored by High-Tech Bridge SA | Site htbridge.com

osCommerce version 2.3.4 suffers from cross site request forgery and local file inclusion vulnerabilities.

tags | exploit, local, vulnerability, file inclusion, csrf
SHA-256 | 0590c4c85647c5c0a02e877aee9bff53f2ee293542d8d20f50cdb9048d52be0f
Oscommerce 2.3.4 XSS / HPP / File Inclusion
Posted Sep 27, 2014
Authored by indoushka

Oscommerce version 2.3.4 suffers from cross site scripting, HTTP parameter pollution, and local file inclusion vulnerabilities.

tags | exploit, web, local, vulnerability, xss, file inclusion
SHA-256 | 8d1dd2e6442e15ac36b712ca7250cbff8a6c970b84e1efbe78af8cdac497642a
osCommerce 2.x SQL Injection
Posted Feb 7, 2014
Authored by Ahmed Aboul-Ela

osCommerce version 2.x suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection
SHA-256 | d32dd50919d8a0c429288d62c1747a59153e7b47726b23268062da0fcd4fefad
osCommerce 2.3.3 Cross Site Request Forgery
Posted Feb 12, 2013
Authored by Jakub Galczyk

osCommerce version 2.3.3 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
SHA-256 | 6899dfd0aba24fae96fc8aca3b04644601579d6527c6c1b6a86f31ffeb009ade
osCommerce 2.3.1 Shell Upload
Posted May 15, 2011
Authored by Number 7

osCommerce version 2.3.1 suffers from a shell upload vulnerability.

tags | exploit, shell
SHA-256 | 6f77547245e4435487ff50cceecb12db25a0c48462dd2c5fb75464bdad739078
osCommerce Authentication Bypass
Posted Feb 4, 2011
Authored by Nicolas Krassas

osCommerce suffers from an authentication bypass vulnerability that allows for unsolicited mailing.

tags | exploit, bypass
SHA-256 | b9982ae7b67c17e621dd30b877cc77f1dbcf1eb0ccb066ecfb7e2b9dfdfab542
osCommerce Online Merchant Remote File Inclusion
Posted Aug 27, 2010
Authored by LoSt.HaCkEr, aDaM_TRoJaN

osCommerce Online Merchant version 3.0 suffers from a remote file inclusion vulnerability.

tags | exploit, remote, code execution, file inclusion
SHA-256 | 4e7b280fbeb7d2f5760e10222e458937fbf0a0a99728fb3b37e6c436c9e14c24
osCommerce 2.2rc2a Cross Site Request Forgery
Posted Aug 3, 2010
Authored by indoushka

osCommerce version 2.2rc2a suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
SHA-256 | 23b16a81c2e781ab23c472ed847c3400505510f61411e9d097fe3e4d2eaae905
Oscommerce Max 2.0.25 Cross Site Request Forgery
Posted Aug 3, 2010
Authored by indoushka

Oscommerce Max version 2.0.25 Changer Login et Mot de Passe suffers from a cross site request forgery vulnerability.

tags | exploit, csrf
SHA-256 | 2f8104846a4a4bec2dad63eee634849af27649beb252f997cc768d19745b309f
Oscommerce Max 2.0.25 Backup Related
Posted Jul 26, 2010
Authored by indoushka

Oscommerce Max version 2.0.25 suffers from a backup creation and download vulnerability.

tags | exploit
SHA-256 | 5e74018474eda8cf0fa93c922c9191eee7ec4049bdf870c9ee7ceaadb6330a05
osCommerce 2.2-MS2 phpinfo() Disclosure
Posted Jun 25, 2010
Authored by Neo-Gabriel

osCommerce version 2.2-MS2 suffers from a phpinfo() disclosure vulnerability.

tags | exploit, info disclosure
SHA-256 | 555cfd22b3dccbe6ce065052758b14d5fe4bf29a1255dc2e53a80ec5aa04f64b
OSCommerce Online Merchant 2.2 Bypass / File Disclosure
Posted May 30, 2010
Authored by Flyff666

OSCommerce Online Merchant version 2.2 suffers from bypass and file disclosure vulnerabilities.

tags | exploit, vulnerability, bypass, info disclosure
SHA-256 | f21e9c849b7d12eb50ad2bf00b6699db4ccc56b6348b85650652541be6c5a730
OSCommerce Online Merchant 2.2 Shell Upload
Posted May 30, 2010
Authored by MasterGipy

OSCommerce Online Merchant version 2.2 summer from a remote shell upload vulnerability.

tags | exploit, remote, shell
SHA-256 | accf9caf2f98126037142407a72e55bc12a1dca65e75488d1094adb02c368983
Page 1 of 2
Back12Next

File Archive:

October 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    39 Files
  • 2
    Oct 2nd
    23 Files
  • 3
    Oct 3rd
    18 Files
  • 4
    Oct 4th
    0 Files
  • 5
    Oct 5th
    0 Files
  • 6
    Oct 6th
    0 Files
  • 7
    Oct 7th
    0 Files
  • 8
    Oct 8th
    0 Files
  • 9
    Oct 9th
    0 Files
  • 10
    Oct 10th
    0 Files
  • 11
    Oct 11th
    0 Files
  • 12
    Oct 12th
    0 Files
  • 13
    Oct 13th
    0 Files
  • 14
    Oct 14th
    0 Files
  • 15
    Oct 15th
    0 Files
  • 16
    Oct 16th
    0 Files
  • 17
    Oct 17th
    0 Files
  • 18
    Oct 18th
    0 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close