XSS in CubeCart <= 2.0.7

CubeCart http://www.cubecart.com up to version 2.0.7 inclusive are vulnerable to a XSS in salecat.php. http://www.example.com/storedirectory/salecat.php/";scriptalertdocument.cookie/script...

CubeCart 2.0.6 Cross Site Scripting / SQL Injection

Exploit Title: CubeCart 2.0.6 SQL injection / Cross Site Scripting Google Dork: "Powered by CubeCart 2.0.6" home : http://www.D99Y.com Date: 2/3/2011 Author: NassRawI Software Link: http://www.cubecart.com Version: 2.0.6 1 SQL injection file : index.php exploit : http://localhost/index.php?catid=...