CVE-2008-1076
CVE-2008-1076 describes a Cross-site Scripting (XSS) vulnerability in Interspire Shopping Cart 1.x, where an attacker can inject arbitrary script via the search_query parameter in search.php. The root cause is improper handling/sanitization of the search_query input, enabling script execution in ...