CVE-2006-6485
CVE-2006-6485 describes multiple cross-site scripting (XSS) vulnerabilities in ShopSite 8.1 and earlier. The issue allows remote attackers to inject arbitrary web script or HTML via the prevlocation parameter in shopper/sc/registration.cgi and other unspecified vectors. The NVD metrics rate a bas...