Smart-Shop index.php Multiple Parameter XSS

ID SSV:84085
Type seebug
Reporter Root
Modified 2014-07-01T00:00:00


No description provided by source.


SMART-SHOP is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input.

Exploiting these vulnerabilities may allow an attacker to perform cross-site scripting attacks on unsuspecting users in the context of the affected website. As a result, the attacker may be able to steal cookie-based authentication credentials and to launch other attacks.<Evil-Script><Evil-Script><Evil-Script>;%3C/script%3E