OSCommerce Multiple Input Validation Vulnerabilities

An attacker can exploit the directory-traversal vulnerability through a web client and can exploit the cross-site scripting vulnerability by enticing an unsuspecting victim to follow a malicious URI.


 

Privacy Statement
Copyright 2010, SecurityFocus