Prestashop Cartium 1.3.3 Multiple Cross Site Scripting (XSS)

2011-03-03T00:00:00
ID SECURITYVULNS:DOC:25834
Type securityvulns
Reporter Securityvulns
Modified 2011-03-03T00:00:00

Description

Hello, In Prestashop Cartium 1.3.3 I have detected multiple Cross Site Scripting (XSS) vulnerabilities:

File Field categoty.php id_category product.php id_product search.php search_query

Test pattern for vulnerable versions:

"></script>alert(1)</script>

Kind Regards Antonio San Martino