CVE-2008-1458
CVE-2008-1458 affects CS-Cart 1.3.2 (also reported in 1.3.5-SP2 trial edition). The vulnerability is a cross-site scripting (XSS) flaw in index.php, exploitable via the q parameter in a products search action, allowing remote attackers to inject arbitrary HTML/JavaScript. No remediation details a...