5.9 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
68.9%
Cross-site scripting (XSS) vulnerability in Zaygo HostingCart 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via certain search module parameters, possibly the root parameter to zaygo.cgi.
pridels0.blogspot.com/2005/12/hostingcart-xss.html
secunia.com/advisories/18036
www.osvdb.org/21729
www.vupen.com/english/advisories/2005/2916