Primary

Context

osCommerce SQL Injection Vulnerability in Product Info Component

Vulnerability

A SQL injection vulnerability has been identified in osCommerce version 2.3.4.1. This issue allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'products_id' parameter in 'product_info.php' requests. Exploitation of this vulnerability could lead to the extraction of sensitive database information.

Impact

Exploitation of this vulnerability allows for boolean-based SQL injection, where attackers can manipulate SQL queries to extract database information.

Reproduction

To reproduce this vulnerability, navigate to the 'product_info.php' page and replace the 'products_id' parameter with a high value, such as 99999999. Then, append a boolean-based SQL injection payload to the end of the URL. The injected payload will be executed by the application's database, allowing the attacker to extract sensitive information.

Added: Feb 27, 2026, 6:18 PM

Updated: Feb 27, 2026, 6:18 PM

Vulnerability Rating

Custom Algorithm

spread

5.2

impact

2.5

exploitability

9.7

remediation

0.0

relevance

3.3

threat

6.4

urgency

2.9

incentive

8.3

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.2

impact

2.5

exploitability

9.7

remediation

0.0

relevance

3.3

threat

6.4

urgency

2.9

incentive

8.3

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

osCommerce SQL Injection Vulnerability in Product Info Component

Vulnerability

Impact

Reproduction

Affected Products

osCommerce

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating