Unspecified vulnerability in OXID eShop Professional, Enterprise, and Community Edition before 4.1.2, 3.x, and 2.x allows remote attackers to gain write access to product reviews via a crafted parameter.
References
Link | Resource |
---|---|
http://www.oxidforge.org/wiki/Security_bulletins/2009-002 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2009-09-09 12:30
Updated : 2009-09-09 21:00
NVD link : CVE-2009-3113
Mitre link : CVE-2009-3113
JSON object : View
CWE
Products Affected
oxid
- eshop