JVN#61543834 EC-CUBE cross-site scripting vulnerability

2006-11-17T00:00:00
ID JVN:61543834
Type jvn
Reporter Japan Vulnerability Notes
Modified 2008-05-21T00:00:00

Description

## Description

## Impact

An arbitrary script may be executed on the user's web browser. If session information from a cookie is leaked, session hijacking could be conducted.

## Solution

## Products Affected

  • EC-CUBE v1.0.0 and earlier For more information, refer to the vendor's website.