CVE-2010-1464
Multiple cross-site scripting XSS vulnerabilities in WebAsyst Shop-Script FREE allow remote attackers to inject arbitrary web script or HTML via the 1 currencyidleft, 2 currencyidright, 3 darkcolor, 4 lightcolor, 5 middlecolor, and 6 w parameters...