BugTraq
Back to list
|
Post reply
NextAge Cart Cross-Site Scripting multiple Vulnerabilities
Sep 15 2006 03:37PM
meto5757 hotmail com
Vulnerable:NextAge Cart Cross-Site Scripting Vulnerability.
Venedor site : http://www.nextagecart.com
Critical Level : Dangerous
Exploiting this issue could allow an attacker to steal cookie-based
authentication credentials and to launch other attacks.
Exploit :
http://www.example.com/[path]/index.php?main=category&sub=product&CatId=
[xss]
http://www.example.com/[path]/index.php?SearchOpt=1&main=search&sub=inde
x&SearchWd=[xss]
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
Venedor site : http://www.nextagecart.com
Critical Level : Dangerous
Exploiting this issue could allow an attacker to steal cookie-based
authentication credentials and to launch other attacks.
Exploit :
http://www.example.com/[path]/index.php?main=category&sub=product&CatId=
[xss]
http://www.example.com/[path]/index.php?SearchOpt=1&main=search&sub=inde
x&SearchWd=[xss]
[ reply ]