EIP-2026-110362
PRE-CVEosCommerce 2.2 - 'Contact_us.php' Cross-Site Scripting
Title source: legacyDescription
osCommerce 2.2 - 'Contact_us.php' Cross-Site Scripting
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by John Cobb · textwebappsphp
https://www.exploit-db.com/exploits/25105
Details
Status
pre_cve
Tracked Since
Feb 18, 2026