CVE-2006-1687

2006-04-1023:00:00

mitre

www.cve.org

AI Score

5.7

Confidence

High

EPSS

0.003

Percentile

65.8%

JSON

Cross-site scripting (XSS) vulnerability in APT-webshop-system 4.0 PRO, 3.0 BASIC, and 3.0 LIGHT allows remote attackers to inject arbitrary web script or HTML via the message parameter, probably involving the basket functionality.

References

pridels0.blogspot.com/2006/04/apt-webshop-system-vuln.html

secunia.com/advisories/19592

www.vupen.com/english/advisories/2006/1293