Description
PHP remote file inclusion vulnerability in include_once.php in osCommerce (a.k.a. Exchange Project) 2.1 allows remote attackers to execute arbitrary PHP code via the include_file parameter.
Remediation
References
Related Vulnerabilities
Microsoft SQL Server Other Vulnerability (CVE-2000-1083)
Grafana Missing Authentication for Critical Function Vulnerability (CVE-2019-15043)
WordPress Plugin WPFront Notification Bar Cross-Site Scripting (2.0.0.07176)
WordPress Plugin WP Statistics Cross-Site Scripting (12.0.8.1)
WordPress Plugin Companion Sitemap Generator Cross-Site Request Forgery (3.6.6)