Osc_Sec

for osCommerce Online Merchant v2.2

A security script design as a workaround for the following common security holes. http://www.exploit-db.com/exploits/15472/ http://www.securityfocus.com/bid/9211/exploit http://tinyurl.com/osc-hack3 http://www.exploit-db.com/exploits/15472/ http://www.exploit-db.com/exploits/15128/ Also allows (optional) options to ban a range of dictionary hammering applications that do not understand cookies. Has a function to add IP addresses automatically to a banned list htaccess file if the user breaks the rules.

Changelog