CVE-2006-3187
CVE-2006-3187 involves multiple cross-site scripting (XSS) vulnerabilities in Sharky e-shop versions up to 3.05 and earlier. The issues allow remote attackers to inject arbitrary web script or HTML via the (1) maingroup and (2) secondgroup parameters to search_prod_list.asp, and the (3) maingroup...