CVE-2006-0237
CVE-2006-0237 concerns a cross-site scripting (XSS) vulnerability in index.php of GTP iCommerce. The flaw allows remote attackers to inject arbitrary web script or HTML via the (1) cat and (2) subcat parameters due to inadequate input handling. They can influence the content rendered in a victim’...