4 matches found
Cross Site Scripting (XSS) Vulnerabilitiy in cpcommerce, CVE-2008-4121
Cross Site Scripting XSS Vulnerabilitiy in cpcommerce, CVE-2008-4121 References http://www.datensalat.eu/fabian/cve/CVE-2008-4121-cpcommerce.html https://vulners.com/cve/CVE-2008-4121 http://cpcommerce.cpradio.org/ Description cpCommerce is an open-source e-commerce solution that is maintained by...
Cross site scripting
Cross-site scripting XSS vulnerability in cpCommerce before 1.2.4 allows remote attackers to inject arbitrary web script or HTML via unknown vectors in the advanced search feature. NOTE: this is probably a variant of CVE-2008-4121...
CVE-2008-4121
CVE-2008-4121 affects cpCommerce prior to 1.2.4. The vulnerability is a Cross-Site Scripting (XSS) flaw that enables remote attackers to inject arbitrary web script or HTML through (1) the search parameter in search.php via the search.quick action and (2) the name parameter in sendtofriend.php vi...
cpcommerce-xss.txt
Cross Site Scripting XSS Vulnerabilitiy in cpcommerce, CVE-2008-4121 References http://www.datensalat.eu/fabian/cve/CVE-2008-4121-cpcommerce.html http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4121 http://cpcommerce.cpradio.org/ Description cpCommerce is an open-source e-commerce solution...