4 matches found
Digishop 4.0 Cart.PHP Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/20297/info digiSHOP is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to have arbitrary script code execute in the browser of an...
CVE-2006-5164
CVE-2006-5164 affects Sum Effect Software digiSHOP 4.0. Vulnerable component: cart.php. Type: cross-site scripting (XSS). Vectors: remote attackers can craft requests using the (1) sortBy or (2) search parameters to inject arbitrary web script/HTML. Impact: potential script execution in the victi...
CVE-2006-5164
Multiple cross-site scripting XSS vulnerabilities in cart.php in Sum Effect Software digiSHOP 4.0 allow remote attackers to inject arbitrary web script or HTML via the 1 sortBy or 2 search parameters...
Digishop 4.0 - cart.php Cross-Site Scripting
Digishop 4.0 - cart.php Cross-Site Scripting source: https://www.securityfocus.com/bid/20297/info digiSHOP is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this issue to have arbitrary script code execute in the...