OSCommerce Multiple Input Validation Vulnerabilities

OSCommerce Multiple Input Validation Vulnerabilities

An attacker can exploit the directory-traversal vulnerability through a web client and can exploit the cross-site scripting vulnerability by enticing an unsuspecting victim to follow a malicious URI.