CVE-2010-1464

2010-04-1619:00:00

mitre

www.cve.org

AI Score

5.8

Confidence

High

EPSS

0.002

Percentile

56.7%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in WebAsyst Shop-Script FREE allow remote attackers to inject arbitrary web script or HTML via the (1) currency_id_left, (2) currency_id_right, (3) darkcolor, (4) lightcolor, (5) middlecolor, and (6) w parameters.