Oscommerce
Approved changes feed: RSS · Atom
cpe:2.3:a:oscommerce:oscommerce:*:*:*:*:phoenix:*:*:*
part: a version: * update: *
| Vendor | Oscommerce (098fcb3a-981f-5eec-92bc-f7a3c45bbae2) |
|---|---|
| Product | Oscommerce (f05e8607-2cd4-5ed2-8937-7df3644c7cce) |
| Edition | * |
| Language | * |
| Software edition | phoenix |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2020-27976 |
vulnerable | 2026-06-08 05:23:53.616183 |
Details available
osCommerce Phoenix CE before 1.0.5.4 allows OS command injection remotely. Within admin/mail.php, a from POST parameter can be passed to the application. This affects the PHP mail function, and the sendmail -f option.
Published: 2020-10-28T14:31:20.000Z
Updated: 2024-08-04T16:25:43.903Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-27975 |
vulnerable | 2026-06-08 05:23:53.615652 |
Details available
osCommerce Phoenix CE before 1.0.5.4 allows admin/define_language.php CSRF.
Published: 2020-10-28T14:31:30.000Z
Updated: 2024-08-04T16:25:44.103Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.