Lucene search
High-Tech BridgeEDB-ID:38207HistoryJan 09, 2013 - 12:00 a.m.
Quick.CMS / Quick.Cart - Cross-Site Scripting
2013-01-0900:00:00
High-Tech Bridge
www.exploit-db.com
28
AI Score
7.4
Confidence
Low
source: https://www.securityfocus.com/bid/57254/info
Quick.Cms and Quick.Cart are prone to a cross-site scripting vulnerability because they fail to sanitize user-supplied input.
An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and launch other attacks.
The following products are vulnerable:
Quick.Cms 5.0
Quick.Cart 6.0
http://www.example.com/admin.php/')"></select><script>alert(document.cookie);</script>/ Related
htbridge
htbridge
Cross-Site Scripting (XSS) vulnerability in Quick.Cms and Quick.Cart
2012-12-19 00:00:00
packetstorm
packetstorm
Quick.Cms 5.0 / Quick.Cart 6.0 Cross Site Scripting
2013-01-10 00:00:00
securityvulns
securityvulns
zdt
zdt
Quick.Cms 5.0 / Quick.Cart 6.0 Cross Site Scripting Vulnerability
2013-01-10 00:00:00
nvd
nvd
CVE-2012-6430
2014-03-24 16:43:01
cvelist
cvelist
CVE-2012-6430
2014-03-24 14:00:00
cve
cve
CVE-2012-6430
2014-03-24 16:43:01
prion
prion
Cross site scripting
2014-03-24 16:43:00