Vulnerabilities > CVE-2009-3112 - Unspecified vulnerability in Oxidforge Oxid Eshop and Oxid Eshop4.0.0.2 14967

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

oxidforge

NVD

Published: 2009-09-09

Updated: 2024-11-21

Summary

Unspecified vulnerability in OXID eShop Professional, Enterprise, and Community Edition before 4.1.0 allows remote attackers to gain administrator privileges and access the shop backend via a crafted parameter.

Vulnerable Configurations

Part	Description	Count
Application	Oxidforge Oxidforge Oxid Eshop 4.0.0.0_13895 Oxidforge Oxid Eshop 4.0.0.2_14842 Oxidforge Oxid Eshop 4.0.0.1_14455 Oxidforge Oxid Eshop 44.0.1.0_15990 Oxidforge Oxid Eshop 4.0.0.0_14260 Oxidforge Oxid Eshop 4.0.0.2_14967 Oxidforge Oxid Eshop 4.0.0.0_13934 Oxidforge Oxid Eshop 4.0.1.0_15990 Oxidforge Oxid Eshop4.0.0.2 14967 *	21

References

http://www.oxidforge.org/wiki/Security_bulletins/2009-001
http://www.oxidforge.org/wiki/Security_bulletins/2009-001