[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] Security status of osCommerce?

To: full-disclosure@xxxxxxxxxxxxxxxx
Subject: [Full-Disclosure] Security status of osCommerce?
From: Joel Merrick <joel@xxxxxxxxxxxxxxxx>
Date: Tue, 18 Jan 2005 17:17:19 +0000

Hi,

I'm wondering if anyone can tell me about the current security status of
the MS2.2 release of osCommerce?

I understand that there have been XSS vulnerabilities and DOS exploits,
heve these been fixed in the MS2.2 downloadable from the site?

Any help appreciated.
-- 
Joel Merrick

Attachment: signature.asc
Description: This is a digitally signed message part

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Prev by Date: [Full-Disclosure] [USN-61-1] vim vulnerabilities
Next by Date: [Full-Disclosure] [USN-63-1] MySQL client vulnerability
Previous by thread: [Full-Disclosure] [USN-61-1] vim vulnerabilities
Next by thread: [Full-Disclosure] [USN-63-1] MySQL client vulnerability
Index(es):
- Date
- Thread