Full title: osCmax e-Commerce v2.5.3 (FU/ObjectInject) Multiple Vulnerabilities 
Category: web applications
Platform: php
osCmax e-Commerce v2.5.3 is suffer from multiple vulnerabilities
remote attacker can upload file/shell via header attacks or exec
a JavaScript Code & Inject a remote Object ( see also : CVE-2013-4144 )

# 0day.today @ http://0day.today/