Security of osCommerce

[Joel Merrick <joel () servicestyle com>]

Hi,

I'm wondering if anyone can tell me about the current security status of
the MS2.2 release of osCommerce?

I understand that there have been XSS vulnerabilities and DOS exploits,
heve these been fixed in the MS2.2 downloadable from the site?

Any help appreciated, the forums deleted my post because it contained an
URL to a Security foucussed osCommerce project (nothing getting sold
though!). Open source? :)

-- 
Joel Merrick

Attachment: signature.asc
Description: This is a digitally signed message part