CVE-2019-25497 | osCommerce 2.3.4.1 shopping_cart.php currency sql injection (Exploit 46328 / EDB-46328)

A vulnerability identified as critical has been detected in osCommerce 2.3.4.1. The affected element is an unknown function of the file shopping_cart.php. Performing a manipulation of the argument currency results in sql injection.

This vulnerability is cataloged as CVE-2019-25497. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More