Pinnacle Cart index.php setbackurl Variable XSS

2006-04-30T09:17:36
ID OSVDB:25150
Type osvdb
Reporter OSVDB
Modified 2006-04-30T09:17:36

Description

Manual Testing Notes

/index.php?p=&address_id=&setbackurl=[XSS]

References:

Vendor URL: http://www.pinnaclecart.com/ Secunia Advisory ID:19878 Other Advisory URL: http://pridels.blogspot.com/2006/04/pinnacle-cart-xss.html FrSIRT Advisory: ADV-2006-1609 CVE-2006-2163 Bugtraq ID: 17794