Vulnerability Database
296,855
Total vulnerabilities in the database
CVE-2012-2935
Cross-site scripting (XSS) vulnerability in osCommerce/OM/Core/Site/Shop/Application/Checkout/pages/main.php in OSCommerce Online Merchant 3.0.2 allows remote attackers to inject arbitrary web script or HTML via the value_title parameter, a different vulnerability than CVE-2012-1059.
| Software | From | Fixed in |
|---|---|---|
| oscommerce / online_merchant | 2.2 | 2.2.x |
| oscommerce / online_merchant | 2.3.1 | 2.3.1.x |
| oscommerce / online_merchant | - | - |
| oscommerce / online_merchant | 2.3.0 | 2.3.0.x |
| oscommerce / online_merchant | - | 3.0.2.x |
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime