2 matches found
LiteCart CMS 'order_id' Parameter Cross-Site Scripting Vulnerability
LiteCart CMS is a free PHP-based e-commerce content management system CMS. A cross-site scripting vulnerability exists in LiteCart CMS version 1.3.4. An attacker can exploit the vulnerability to execute arbitrary script code, steal cookie-based authentication and launch other attacks...
Litecart CMS 1.3.4 Cross Site Scripting
Product: Litecart CMS Vendor: Litecart Vendor Homepage: https://www.litecart.net/ Vulnerable Versions: 1.3.4 and probably prior Tested Version: 1.3.4 Issue Reported: Feb 24, 2016 Vendor Fix: Feb 28, 2016 Public Disclosure: June 25, 2014 Vulnerability Type: Cross-Site Scripting CWE-79 Risk Level:...