New vulnerability on the NVD: CVE-2017-14993

OXID eShop Community Edition before 6.0.0 RC3 (development), 4.10.x before 4.10.6 (maintenance), and 4.9.x before 4.9.11 (legacy), Enterprise Edition before 6.0.0 RC3 (development), 5.2.x before 5.2.11 (legacy), and 5.3.x before 5.3.6 (maintenance), and Professional Edition before 6.0.0 RC3 (development), 4.9.x before 4.9.11 (legacy) and 4.10.x before 4.10.6 (maintenance) allow remote attackers to crawl specially crafted URLs (aka "forced browsing") in order to overflow the database of the shop and consequently make it stop working. Prerequisite: the shop allows rendering empty categories to the storefront via an admin option.

Published at: February 21, 2018 at 04:29AM

Comments

Post a Comment

Popular posts from this blog

Detours for Bus Routes 23 and 103 on Saturday, Sept. 3 and Detours for Bus Routes 22, 200, 202, 203, 224, 238, 250 and 251 on Monday, Sept. 5

Bus routes 23 and 103 on detour on Saturday, Sept. 3 from 7 to 11 p.m. during the Dallas GSWS closing ceremony block party at the historic Crossroads on Cedar Springs. Bus routes 22, 200, 202, 203, 224, 238, 250 and 251 will be on detour during the Garland Labor Day Parade on Monday, Sept. 5 from 9 to 11:30 a.m. Reminder: DART buses and light rail will operate on a weekend schedule for the Labor Day holiday on Monday, Sept. 5. More information available at https://ift.tt/lst5vcZ
Read more

Bus Route 104 on Detour during Kingz of the South Block Party on Friday, August 12, 2022

Bus route 104 will be on detour from 8 p.m. to 2 a.m. on Friday, August 12 during the Kingz of the South Block Party on Martin Luther King Jr. Blvd. Westbound from Martin Luther King Jr. Blvd.: Left on Myrtle, right on Pennsylvania, right on Atlanta, left on Martin Luther King Jr. Blvd., regular route. Eastbound from Martin Luther King Jr. Blvd.: Right on Atlanta, left on Pennsylvania, left on Myrtle, right on Martin Luther King Jr. Blvd., regular route.
Read more

DART Announces 2022 Labor Day Schedule

Dallas Area Rapid Transit (DART) will operate on the following schedule for the Labor Day holiday on Monday, September 5. DART Buses and Light Rail: Operating on a weekend schedule. (Route 402 NorthPark Shuttle and Route 883 UTD Comet Cruiser will operate on a Sunday schedule.) The Trinity Railway Express (TRE): No service. DART GoLink: GoLink will operate only in zones that provide Sunday service. These zones include Northwest Dallas, Inland Port, Rylie, West Dallas, North Dallas, North Central Dallas and Park Cities. Service will be unavailable in all other zones. More information available at https://ift.tt/9m8w7MV
Read more