2 matches found
PT-2006-6339 · Ig · Ig Shop
Name of the Vulnerable Software and Affected Versions: iG Shop version 1.4 Description: The issue is related to a cross-site scripting XSS vulnerability. It allows remote attackers to inject arbitrary web script or HTML via arbitrary query strings in the change pass.php file when the action...
PT-2006-6340 · Ig · Ig Shop
Name of the Vulnerable Software and Affected Versions: iG Shop version 1.4 Description: A cross-site scripting XSS issue exists, allowing remote attackers to inject arbitrary web script or HTML via the id parameter in the change pass.php file. Recommendations: For iG Shop version 1.4, avoid using...