CVE-2004-2701
CVE-2004-2701 is a cross-site scripting (XSS) vulnerability in AspDotNetStorefront 3.3, specifically in signin.aspx where an attacker can inject arbitrary web script or HTML via the returnurl parameter. Affected component is the signin.aspx handling of returnurl; root cause is improper handling o...