[] NeoSense
E X P L O I T S
title author type platform port cve id

osCommerce 2.2 - 'product_info.php' Denial of Service

Author: Lorenzo Hernandez Garcia-Hierro
type: dos
platform: php
port: nan
date_added: 2003-04-15 
date_updated: 2012-11-05 
verified: 1 
codes: OSVDB-7370 
tags: 
aliases:  
screenshot_url:  
application_url: 
source: https://www.securityfocus.com/bid/7351/info

It has been reported that an attacker may trigger a denial of service condition in osCommerce application. If malicious URI parameters are passed to several of the osCommerce PHP pages, the mySQL and web server hosting osCommerce reportedly becomes unstable, possibly resulting in a denial of service condition.

It should be noted that although osCommerce version 2.2cvs was reported vulnerable, previous versions may also be affected.

product_info.php?products_id=[large amount of random content]
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.