CVE-2005-2386
CVE-2005-2386: XSS in CartWIZ 1.20 viewCart.asp via the message parameter. An attacker can inject arbitrary script/HTML that executes in the victim’s browser. No patch/mitigation details are provided in the connected documents; exploitation status is not specified.