CVE-2006-3141
CVE-2006-3141 is a documented XSS vulnerability in Tradingeye Shop R4 and earlier, exploitable via the image parameter in details.cfm. The underlying issue is that user-supplied data can inject arbitrary web script or HTML, enabling remote attackers to execute script within victims’ browsers. The...