CVE-2005-3736

2005-11-21T19:03:00
ID CVE-2005-3736
Type cve
Reporter NVD
Modified 2008-09-05T16:55:09

Description

Multiple cross-site scripting (XSS) vulnerabilities in e-Quick Cart allow remote attackers to inject arbitrary web script or HTML via the (1) strgifttoname parameter in shopgift.asp, (2) strfirstname parameter in shopmaillist.asp, (3) strpid parameter in shopprojectlogin.asp, and (4) Custname parameter in shoptellafriend.asp.