CVE-2014-8305
The CVE-2014-8305 entry concerns C97net Cart Engine prior to version 4.0, where the open redirect vulnerability exists in the redir function (includes/function.php). An attacker can cause a user to be redirected to arbitrary sites by supplying a URL in the HTTP Referer header to one of four pages...