Online Computer and Laptop Store is an online computer and laptop store from Carlo Monteroβs personal developer. A cross-site scripting vulnerability exists in Online Computer and Laptop Store v1.0, which stems from the lack of effective filtering and escaping of user-supplied data in the Brand Name parameter of the /admin/?page=maintenance/brand file, which could be exploited by an attacker to execute arbitrary Web script or HTML by injecting a carefully crafted payload to execute arbitrary Web scripts or HTML.
CPE | Name | Operator | Version |
---|---|---|---|
carlo montero online computer and laptop store v | eq | 1.0 |