<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Vulnerability Development: Security of osCommerce

Security of osCommerce

From: Joel Merrick <joel_at_servicestyle.com>
Date: Tue, 18 Jan 2005 17:18:59 +0000

Hi,

I'm wondering if anyone can tell me about the current security status of
the MS2.2 release of osCommerce?

I understand that there have been XSS vulnerabilities and DOS exploits,
heve these been fixed in the MS2.2 downloadable from the site?

Any help appreciated, the forums deleted my post because it contained an
URL to a Security foucussed osCommerce project (nothing getting sold
though!). Open source? :)

-- 
Joel Merrick

application/pgp-signature attachment: This is a digitally signed message part

Received on Jan 21 2005

This message: [ Message body ]
Next message: Carlos Ulver: "RealPlayer 10.5 Denial of Service and possible Overflow"
Previous message: EvilPacket: "Run-time errors and JIT debuggers"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]

edgeos