3 matches found
CubeCart 3.0.3 cart.php redir Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/14962/info CubeCart is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issues to...
CVE-2005-3152
Multiple cross-site scripting XSS vulnerabilities in CubeCart 3.0.3 allow remote attackers to inject arbitrary web script or HTML via the redir parameter to 1 cart.php or 2 index.php, or 3 the searchStr parameter in a viewCat action to index.php. Note: vectors 1 and 2 were later reported to affec...
cubecart-3.0.3.txt
CubeCart 3.0.3 multiple variable Cross site scripting Vendor url: www.cubecart.com bug report:http://bugs.cubecart.com/?do=details&id=363 Advisore:http://lostmon.blogspot.com/2005/09/ cubecart-303-multiple-variable-cross.html vendor confirmed: yes exploit avalable: yes Fix available: yes CubeCar...