Cross-Site Request Forgery Vulnerability in osCommerce by osCommerce
CVE-2009-0408

Currently unrated

Key Information:

Vendor

Oscommerce

Status
Oscommerce
Vendor
CVE Published:
3 February 2009

What is CVE-2009-0408?

A security flaw in osCommerce 2.2 RC 2a enables remote attackers to exploit a cross-site request forgery vulnerability. This allows them to hijack the authentication process of administrators, potentially giving unauthorized access to sensitive areas of the application. Protecting against such vulnerabilities is crucial to maintain the integrity and security of online stores operating on this platform. Implementing security measures and keeping software updated can mitigate these risks.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://osvdb.org/51605
vdb-entryx_refsource_OSVDB
https://exchange.xforce.ibmcloud.com/vulnerabilities/48289
vdb-entryx_refsource_XF
http://holisticinfosec.org/content/view/97/45/
x_refsource_MISC

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.