CVE-2006-2124
CVE-2006-2124 affects SunShop 3.5 and earlier. Multiple XSS vulnerabilities in index.php allow injection of arbitrary script/HTML via the parameters: prevaction, previd, prevstart, itemid, id, and action. Impact is Web page/script injection; exact exploit details and remediation are not provided ...