This exploit demonstrates multiple XSS vulnerabilities in osCommerce 2.3.4, including reflected and persistent XSS via CSRF. It provides detailed PoC code for exploiting these vulnerabilities in various admin panels.
Classification
Working Poc 100%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target:osCommerce 2.3.4
Auth required
Prerequisites:Access to admin panel · Victim interaction for CSRF