CVE-2005-4293

CVE-2005-4293 describes a Cross-site Scripting (XSS) flaw in CCP’s cp-app.cgi for ClickCartPro (CCP) 5.1 and earlier. The affl parameter is injectable and can lead to remote attackers injecting arbitrary web script or HTML in the affected web page. The public documentation in the NVD shows a CVSS...

ClickCartPro (CCP) XSS vuln.

ClickCartPro CCP XSS vuln. Vuln. discovered by : r0t Date: 14 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/clickcartpro-ccp-xss-vuln.html vendor:http://www.clickcartpro.com/ affected version:5.1 and prior Product Description: CCP is a full featured shopping cart engine that will...