Cross-site scripting (XSS) vulnerability in index.php in NZ Ecommerce allows remote attackers to inject arbitrary web script or HTML via the action parameter. NOTE: the vendor has disputed this issue in a comment on the researcher's blog, but research by CVE suggests that this might be a legitimate problem
References
Configurations
History
07 Nov 2023, 01:58
Type | Values Removed | Values Added |
---|---|---|
Summary | Cross-site scripting (XSS) vulnerability in index.php in NZ Ecommerce allows remote attackers to inject arbitrary web script or HTML via the action parameter. NOTE: the vendor has disputed this issue in a comment on the researcher's blog, but research by CVE suggests that this might be a legitimate problem |
Information
Published : 2006-03-09 13:06
Updated : 2024-08-07 17:15
NVD link : CVE-2006-1096
Mitre link : CVE-2006-1096
CVE.ORG link : CVE-2006-1096
JSON object : View
Products Affected
digital_builder
- nz_ecommerce
CWE