Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

osCommerce — Vulnerabilities & Security Advisories 9

All 9 CVE vulnerabilities found in osCommerce, with AI-generated Chinese analysis, references, and POCs.

Vendor: n/a

CVE IDTitleCVSSSeverityPublished
CVE-2019-25497 osCommerce 2.3.4.1 SQL Injection via currency Parameter CWE-89 8.2 High2026-02-27
CVE-2019-25496 osCommerce 2.3.4.1 SQL Injection via products_id Parameter CWE-89 8.2 High2026-02-27
CVE-2019-25495 osCommerce 2.3.4.1 SQL Injection via reviews_id Parameter CWE-89 8.2 High2026-02-27
CVE-2009-20006 osCommerce <= 2.2 Admin File Manager Arbitrary PHP Code Execution CWE-434 9.8AICriticalAI2025-09-16
CVE-2025-40674 Reflected Cross-Site Scripting (XSS) in osCommerce CWE-79 6.1AIMediumAI2025-06-17
CVE-2024-4348 osCommerce all-products cross site scripting CWE-79 4.3 Medium2024-04-30
CVE-2023-6609 osCommerce all-products cross site scripting CWE-79 3.5 Low2023-12-08
CVE-2023-6579 osCommerce POST Parameter shopping-cart sql injection CWE-89 7.3 High2023-12-07
CVE-2023-6296 osCommerce Instant Message compare cross site scripting CWE-79 4.3 Medium2023-11-26

All 9 known CVE vulnerabilities affecting osCommerce with full Chinese analysis, references, and POCs where available.