• info
• discussion
• exploit
• solution
• references

EC-CUBE CVE-2013-3652 Cross Site Scripting Vulnerability

Attackers can exploit this issue by enticing an unsuspecting victim to follow a malicious URI.