Vulnerability Database

309,364

Total vulnerabilities in the database

CVE-2018-5763

An issue was discovered in OXID eShop Enterprise Edition before 5.3.7 and 6.x before 6.0.1. By entering specially crafted URLs, an attacker is able to bring the shop server to a standstill and hence, it stops working. This is only valid if OXID High Performance Option is activated and Varnish is used.

Published: Feb 19, 2018
Updated: Nov 9, 2025
CVE: CVE-2018-5763
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:N/A:P

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
oxid-esales / eshop	6.0.0-rc1	6.0.0-rc1.x
oxid-esales / eshop	6.0.0-rc2	6.0.0-rc2.x
oxid-esales / eshop	6.0.0-rc3	6.0.0-rc3.x
oxid-esales / eshop	6.0.0	6.0.0.x
oxid-esales / eshop	-	5.3.7

https://oxidforge.org/en/security-bulletin-2018-001.html

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo