Vulnerabilities > CVE-2018-18965 - Unspecified vulnerability in Oscommerce Online Merchant 2.3.4.1

CVSS 4.9 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

network

low complexity

oscommerce

NVD

Published: 2018-11-06

Updated: 2020-08-24

Summary

osCommerce 2.3.4.1 has an incomplete '.htaccess' for blacklist filtering in the "product" page. The .htaccess file in catalog/images/ bans the html extension, but there are several alternative cases in which HTML can be executed, such as a file with no extension or an unrecognized extension (e.g., the test or test.asdf filename).

Vulnerable Configurations

Part	Description	Count
Application	Oscommerce Oscommerce Online Merchant 2.3.4.1	1

References

https://github.com/osCommerce/oscommerce2/issues/631