CVE-2006-3030
DwZone Shopping Cart prior to or at version 1.1.9 has multiple XSS vulnerabilities. The issue arises in the web app’s handling of user input parameters: (1) ToCategory and (2) FromCategory to ProductDetailsForm.asp, and (3) UserName and (4) Password to LogIn/VerifyUserLog.asp. The flaws allow rem...