Vulnerabilities > Oscommerce > Oscommerce > 2.3.4

DATE CVE VULNERABILITY TITLE RISK
2022-08-18 CVE-2022-35212 Cross-site Scripting vulnerability in Oscommerce
osCommerce2 before v2.3.4.1 was discovered to contain a cross-site scripting (XSS) vulnerability via the function tep_db_error().
network
low complexity
oscommerce CWE-79
6.1
6.1