← Back

Php Point Of Sale

php_point_of_sale

Vendor: Oscommerce • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2007-1477
1Oscommerce
1Php Point Of Sale
Apr 23, 2026
Mar 16, 2007
N/A· v4
N/A· v3
7.5 HIGH· v2
Directory traversal vulnerability in index.php in PHP Point Of Sale for osCommerce 1.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the cfg_language parameter. NOTE: this iss...Show more
Directory traversal vulnerability in index.php in PHP Point Of Sale for osCommerce 1.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the cfg_language parameter. NOTE: this issue has been disputed by CVE, since the cfg_language variable is configured upon proper product installationShow less