• info
• discussion
• exploit
• solution
• references

OSCommerce Account_History_Info.PHP HTML code injection Vulnerability

Solution:
A patch, to address this issue, is reportedly available by CVS update. Users are advised to contact the vendor for fix details.