CVE-2005-4355

Multiple cross-site scripting XSS vulnerabilities in UStore allow remote attackers to inject arbitrary web script or HTML via the 1 Cat parameter in default.asp and the 2 accessdenied parameter in admin/default.asp. NOTE: the provenance of this information is unknown; the details are obtained...

CVE-2005-4355

CVE-2005-4355 : The data shows multiple cross-site scripting (XSS) vulnerabilities in the UStore web application. The issues affect parameters in the public and admin interfaces: (1) the Cat parameter in default.asp and (2) the accessdenied parameter in admin/default.asp. The root cause is improp...