2 matches found
CVE-2009-4570
Cross-site scripting XSS vulnerability in PhpShop 0.8.1 allows remote attackers to inject arbitrary web script or HTML via the orderid parameter in an order/orderprint action to the default URI...
CVE-2009-4570
PhpShop 0.8.1 is affected by CVE-2009-4570, a cross-site scripting (XSS) vulnerability that allows remote attackers to inject arbitrary script via the order_id parameter in the order_print action to the default URI. Severity: CVSS v2 base score 4.3 (Medium). Related sources (NVD/OpenVAS) describe...