Oscommerce Oscommerce 4.12.56860
Approved changes feed: RSS · Atom
cpe:2.3:a:oscommerce:oscommerce:4.12.56860:*:*:*:*:*:*:*
part: a version: 4.12.56860 update: *
| Vendor | Oscommerce (098fcb3a-981f-5eec-92bc-f7a3c45bbae2) |
|---|---|
| Product | Oscommerce (f05e8607-2cd4-5ed2-8937-7df3644c7cce) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/oscommerce/oscommerce |
purl2cpe | 2026-06-01 10:12:48.810004 |
pkg:github/oscommerce/oscommerce2 |
purl2cpe | 2026-06-01 10:12:48.810006 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-5112 |
vulnerable | 2026-06-08 06:19:41.508886 |
Os Commerce 4.12.56860 - Cross Site Scripting Reflected (XSS)
MEDIUM (5.4)
Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability.
This vulnerability allows attackers to inject JS through the "specials_type_name[1]" parameter,
potentially leading to unauthorized execution of scripts within a user's web browser.
Published: 2023-09-30T22:08:55.337Z
Updated: 2024-09-20T17:21:19.814Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-5111 |
vulnerable | 2026-06-08 06:19:41.506525 |
Os Commerce 4.12.56860 - Cross Site Scripting Reflected (XSS)
MEDIUM (5.4)
Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability.
This vulnerability allows attackers to inject JS through the "featured_type_name[1]" parameter,
potentially leading to unauthorized execution of scripts within a user's web browser.
Published: 2023-09-30T22:08:52.218Z
Updated: 2024-09-20T17:22:03.180Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43735 |
vulnerable | 2026-06-08 06:12:37.729795 |
Os Commerce 4.12.56860 - Cross Site Scripting Reflected (XSS)
MEDIUM (5.4)
Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability.
This vulnerability allows attackers to inject JS through the "formats_titles[7]" parameter,
potentially leading to unauthorized execution of scripts within a user's web browser.
Published: 2023-09-30T22:08:49.377Z
Updated: 2024-09-20T17:22:35.282Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43734 |
vulnerable | 2026-06-08 06:12:37.729320 |
Os Commerce 4.12.56860 - Cross Site Scripting Reflected (XSS)
MEDIUM (5.4)
Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability.
This vulnerability allows attackers to inject JS through the "name" parameter,
potentially leading to unauthorized execution of scripts within a user's web browser.
Published: 2023-09-30T22:08:47.176Z
Updated: 2024-09-20T17:23:23.073Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43733 |
vulnerable | 2026-06-08 06:12:37.728934 |
Os Commerce 4.12.56860 - Cross Site Scripting Reflected (XSS)
MEDIUM (5.4)
Os Commerce is currently susceptible to a Cross-Site Scripting (XSS) vulnerability.
This vulnerability allows attackers to inject JS through the "company_address" parameter,
potentially leading to unauthorized execution of scripts within a user's web browser.
Published: 2023-09-30T22:08:44.735Z
Updated: 2024-09-20T17:23:58.087Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43732 |
vulnerable | 2026-06-08 06:12:37.728538 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43731 |
vulnerable | 2026-06-08 06:12:37.728071 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43730 |
vulnerable | 2026-06-08 06:12:37.727605 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43729 |
vulnerable | 2026-06-08 06:12:37.727028 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43728 |
vulnerable | 2026-06-08 06:12:37.726543 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43727 |
vulnerable | 2026-06-08 06:12:37.726178 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43726 |
vulnerable | 2026-06-08 06:12:37.725787 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43725 |
vulnerable | 2026-06-08 06:12:37.725291 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43724 |
vulnerable | 2026-06-08 06:12:37.724821 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43723 |
vulnerable | 2026-06-08 06:12:37.724426 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43722 |
vulnerable | 2026-06-08 06:12:37.723916 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43721 |
vulnerable | 2026-06-08 06:12:37.723370 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43720 |
vulnerable | 2026-06-08 06:12:37.722887 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43719 |
vulnerable | 2026-06-08 06:12:37.722418 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43718 |
vulnerable | 2026-06-08 06:12:37.721922 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43717 |
vulnerable | 2026-06-08 06:12:37.721434 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43716 |
vulnerable | 2026-06-08 06:12:37.720861 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43715 |
vulnerable | 2026-06-08 06:12:37.720459 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43714 |
vulnerable | 2026-06-08 06:12:37.719965 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43713 |
vulnerable | 2026-06-08 06:12:37.719410 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43712 |
vulnerable | 2026-06-08 06:12:37.718814 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43711 |
vulnerable | 2026-06-08 06:12:37.718353 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43710 |
vulnerable | 2026-06-08 06:12:37.717884 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43709 |
vulnerable | 2026-06-08 06:12:37.717285 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43708 |
vulnerable | 2026-06-08 06:12:37.716913 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43707 |
vulnerable | 2026-06-08 06:12:37.716531 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43706 |
vulnerable | 2026-06-08 06:12:37.716125 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43705 |
vulnerable | 2026-06-08 06:12:37.715623 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43704 |
vulnerable | 2026-06-08 06:12:37.715230 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43703 |
vulnerable | 2026-06-08 06:12:37.714706 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-43702 |
vulnerable | 2026-06-08 06:12:37.714097 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.