8 matches found
EUVD-2012-5148
Malware in sbrugna...
CVE-2012-5225
Cross-site scripting XSS vulnerability in webscr.php in xClick Cart 1.0.1 and 1.0.2 allows remote attackers to inject arbitrary web script or HTML via the shoppingurl parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in webscr.php in xClick Cart 1.0.1 and 1.0.2 allows remote attackers to inject arbitrary web script or HTML via the shoppingurl parameter...
CVE-2012-5225
Cross-site scripting XSS vulnerability in webscr.php in xClick Cart 1.0.1 and 1.0.2 allows remote attackers to inject arbitrary web script or HTML via the shoppingurl parameter...
CVE-2012-5225
CVE-2012-5225 concerns a cross-site scripting (XSS) vulnerability in the webscr.php component of xClick Cart versions 1.0.1 and 1.0.2. The flaw allows remote attackers to inject arbitrary web script or HTML via the shopping_url parameter. The public sources describe the affected product and vulne...
xClick Cart 1.0.1 / 1.0.2 Cross Site Scripting
Exploit Title: xClick Cart Cross Site Scripting Date: 27.01.2012 Author: Sony Software Link: http://www.eliteweaver.co.uk/?page=xclick-cart Version: v1.0.1/v1.0.2 Google Dorks: intext:"Powered by: xClick Cart" or webscr.php?itemname= Web Browser : Mozilla Firefox Blog : http://st2tea.blogspot.com...
xClick Cart 1.0.x - shopping_url Cross-Site Scripting
xClick Cart 1.0.x - shoppingurl Cross-Site Scripting source: https://www.securityfocus.com/bid/51699/info xClick Cart is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in...
xClick Cart 1.0.x - 'shopping_url' Cross-Site Scripting
source: https://www.securityfocus.com/bid/51699/info xClick Cart is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context o...