2 matches found
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in Carmosa phpCart 3.4 through 4.6.4 allow remote attackers to inject arbitrary web script or HTML via the 1 quantity or 2 Add Engraving fields to the default URI; 3 Quantity field to phpcart.php; 4 Name, 5 Company, 6 Address, 7 City, and 8...
CVE-2008-7108
Multiple cross-site scripting XSS vulnerabilities in Carmosa phpCart 3.4 through 4.6.4 allow remote attackers to inject arbitrary web script or HTML via the 1 quantity or 2 Add Engraving fields to the default URI; 3 Quantity field to phpcart.php; 4 Name, 5 Company, 6 Address, 7 City, and 8...