Zeuscart 4.0 Search Cross Site Scripting

Vulnerability: Cross-Site Scripting Vendor: http://www.zeuscart.com Download link: http://zeuscart.com/download/ Affected version: Zeuscart V4 CVSS v3.0 Vector: AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N Condition: The attack is performed by an "Anonymous User" Payload: "--alert/ITASVN/ Fix version: N/A...