CVE-2002-1991

EPSS 5.06% · P90 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2002-1991

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

PHP file inclusion vulnerability in osCommerce 2.1 execute arbitrary commands via the include_file parameter to include_once.php.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

OSCommerce远程文件包含漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

osCommerce 2.1版本存在PHP文件包含漏洞。该漏洞借助include_once.php的include_file参数执行任意命令。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2002-1991

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2002-1991

Please Login to view more intelligence information

http://www.oscommerce.com/about.php/news%2C72x_refsource_CONFIRM
http://www.securityfocus.com/bid/5037vdb-entryx_refsource_BID
http://www.iss.net/security_center/static/9369.phpvdb-entryx_refsource_XF
http://online.securityfocus.com/archive/1/277312mailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2002-1991

Same Patch Batch · n/a · 2005-07-14 · 176 CVEs total

CVE-2002-2032		PHP-Nuke SQL_Debug调试信息泄露漏洞
CVE-2002-2022		Kaffe OpenVM NoClassDefFoundError格式字符串漏洞
CVE-2002-2023		Shingo beep2任意文件读取漏洞
CVE-2002-2024		Horde IMP 2.2.7存在路径泄露漏洞
CVE-2002-2025		Lotus Domino MS-DOS设备文件名拒绝服务攻击漏洞
CVE-2002-2026		BrowseFTP Client缓冲区溢出漏洞
CVE-2002-2027		Database of our owlish Wisdom 安全漏洞
CVE-2002-2028		微软Windows NT不准确的登录日志漏洞
CVE-2002-2029		Apache Win32 PHP.EXE远程文件泄露漏洞
CVE-2002-2030		SQLData Enterprise Server缓冲区溢出漏洞
CVE-2002-2031		Microsoft Internet Explorer 安全漏洞
CVE-2002-2037		Solaris漏洞威胁Cisco Media Gateway Controller的安全
CVE-2002-2042		QNX 'ptrace()'任意进程修改漏洞
CVE-2002-2041		QNX RTOS PKG-Installer缓冲区溢出漏洞
CVE-2002-2040		QNX RTOS phgrafx特权提升漏洞
CVE-2002-2039		QNX RTOS su密码哈希泄露漏洞
CVE-2002-2038		新一代的POSIX线程共享内存服务拒绝漏洞
CVE-2002-2035		RealityScape MyLoginSQL注入漏洞
CVE-2002-2033		Faqmanager.cgi NULL字符泄露任意文件漏洞
CVE-2002-2034		John Hardin Procmail Email Sanitizer分段Mime识别漏洞

Showing top 20 of 176 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2002-1991

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2002-1991

I. Basic Information for CVE-2002-1991

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2002-1991

III. Intelligence Information for CVE-2002-1991

Same Patch Batch · n/a · 2005-07-14 · 176 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2002-1991

Leave a comment