TomatoCart 1.0.1 (json.php) Remote Cross-Site Scripting Vulnerability

Summary TomatoCart is the new generation of open source shopping cart solution developed by Elootec Technology Co., Ltd. It is branched from osCommerce 3 as a separate project. Description TomatoCart version 1.0.1 suffers from a XSS vulnerability because input passed via the "action" parameter to...