CVE-2009-3112 - OpenCVE

Unspecified vulnerability in OXID eShop Professional, Enterprise, and Community Edition before 4.1.0 allows remote attackers to gain administrator privileges and access the shop backend via a crafted parameter.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:L/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Oxidforge	Oxid Eshop4.0.0.2 14967 Oxid Eshop

Configuration 1 [-]

OR	cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.0_13895::community_edition:::::
	cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.0_13895::enterprise_edition:::::
	cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.0_13895::pro_edition:::::
	cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.0_13934::community_edition:::::
	cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.0_13934::enterprise_edition:::::
	cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.0_13934::pro_edition:::::
	cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.0_14260::community_edition:::::
	cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.0_14260::enterprise_edition:::::
	cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.0_14260::pro_edition:::::
	cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.1_14455::community_edition:::::
	cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.1_14455::enterprise_edition:::::
	cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.1_14455::pro_edition:::::
	cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.2_14842::community_edition:::::
	cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.2_14842::enterprise_edition:::::
	cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.2_14842::pro_edition:::::
	cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.2_14967::enterprise_edition:::::
	cpe:2.3:a:oxidforge:oxid_eshop:4.0.0.2_14967::pro_edition:::::
	cpe:2.3:a:oxidforge:oxid_eshop:4.0.1.0_15990::enterprise_edition:::::
	cpe:2.3:a:oxidforge:oxid_eshop:4.0.1.0_15990::pro_edition:::::
	cpe:2.3:a:oxidforge:oxid_eshop:44.0.1.0_15990::community_edition:::::
	cpe:2.3:a:oxidforge:oxid_eshop4.0.0.2_14967::community_edition::::::*