Security Advisory

CVE-2009-2266

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2009-09-09 17:00:00

Last updated 2024-09-16 20:16:28

Assigner mitre

State PUBLISHED

Description

OXID eShop 4.x before 4.1.4-21266, 3.x, and 2.x allows remote attackers to obtain sensitive information (session details and order history of other users) via a crafted cookie.

← Browse all CVEs View on cve.org ↗