Qualiteam X-Cart SQL Injection and Cross-Site Scripting Vulnerabilities

info
discussion
exploit
solution
references

Qualiteam X-Cart SQL Injection and Cross-Site Scripting Vulnerabilities

Solution:
The vendor has confirmed these issues and released a patch to address them. The latest version of the application is not vulnerable to these issues as well. Please contact the vendor to obtain fixes.