Pentasoft Avactis Shopping Cart Multiple Cross Site Scripting Vulnerabilities

Pentasoft Avactis Shopping Cart Multiple Cross Site Scripting Vulnerabilities

Solution:
The vendor has released a patch. The vendor recommends replacing existing copies of the 'avactis-system/core/request.php' file with this patch. Please see the references for details.

Pentasoft Avactis Shopping Cart 1.8

Pentasoft request.php
http://www.avactis.com/forums/index.php?s=6ba2bbce808c6cec1a01da0fba04 1d58&act=Attach&type=post&id=270

Pentasoft Avactis Shopping Cart 1.8.1

Pentasoft request.php
http://www.avactis.com/forums/index.php?s=6ba2bbce808c6cec1a01da0fba04 1d58&act=Attach&type=post&id=270