CVE-2009-2266

Metadata

CVE-2009-2266
5.0
oxidforge.org
2009-09-09
2017-06-06 20:20

Description

OXID eShop 4.x before 4.1.4-21266, 3.x, and 2.x allows remote attackers to obtain sensitive information (session details and order history of other users) via a crafted cookie.

Related Vulnerabilities