CVE-2005-1502

2005-05-11T04:00:00
ID CVE-2005-1502
Type cve
Reporter cve@mitre.org
Modified 2017-07-11T01:32:00

Description

Cross-site scripting (XSS) vulnerability in MidiCart PHP Shopping Cart allows remote attackers to inject arbitrary web script or HTML via the (1) searchstring parameter to search_list.php or the (2) secondgroup or (3) maingroup parameters to item_list.php.