2 matches found
CVE-2006-3800
Cross-site scripting XSS vulnerability in Amazing Flash AFCommerce Shopping Cart allows remote attackers to inject arbitrary web script or HTML via the "new review" text box...
PT-2006-4654 · Amazing Flash · Amazing Flash Afcommerce Shopping Cart
Name of the Vulnerable Software and Affected Versions: Amazing Flash AFCommerce Shopping Cart affected versions not specified Description: The issue allows remote attackers to execute arbitrary SQL commands via the search field, potentially leading to unauthorized access or data manipulation...