Vulnerabilities > CVE-2004-2638 - Unspecified vulnerability in Oscommerce 1.5.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
The Admin Access With Levels plugin in osCommerce 1.5.1 allows remote attackers to access files in the "admin/" directory by modifying the in_login parameter to a non-zero value.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |