CVE-2008-7057
Affected software: BandSite CMS 1.1.4. Vulnerability: Cross-site scripting (XSS) in merchandise.php, exploitable via the type parameter. Root cause / note: Malicious HTML/script can be injected into the page by manipulating the type parameter. Documents do not specify a concrete exploit string or...