2 matches found
CVE-2010-1590
Cross-site scripting XSS vulnerability in shopsessionsubs.asp in Rocksalt International VP-ASP Shopping Cart 6.50 and earlier might allow remote attackers to inject arbitrary web script or HTML via the client's DNS hostname aka the REMOTEHOST variable, related to the CookielessGenerateFilename an...
CVE-2010-1590
CVE-2010-1590 is an XSS vulnerability affecting Rocksalt International VP-ASP Shopping Cart (version 6.50 and earlier), exploitable via the REMOTE_HOST DNS hostname. The issue is tied to the CookielessGenerateFilename and CookielessReadFile functions, allowing remote attackers to inject arbitrary...