CVE-2017-10667
Zen Cart 1.6.0 is affected by a cross-site scripting (XSS) vulnerability in index.php where the products_id parameter can be used to inject script. The provided documents confirm the issue but do not include exploitation details, affected versions beyond Zen Cart 1.6.0, or specific root-cause cod...