VYPR

OXID eSales

by Oxid

CVEs (1)

  • CVE-2018-20715Jan 15, 2019
    risk 0.00cvss epss 0.01

    The DB abstraction layer of OXID eSales 4.10.6 is vulnerable to SQL injection via the oxid or synchoxid parameter to the oxConfig::getRequestParameter() method in core/oxconfig.php.