CVE-2007-2790
VP-ASP Shopping Cart 6.50 (and possibly earlier) has a Cross-Site Scripting (XSS) vulnerability in shopcontent.asp, exploitable via the type parameter. The issue is described across multiple sources as a remote attacker can inject arbitrary web script/HTML by supplying a crafted type value, with ...