Cross-site scripting (XSS) vulnerability in search.php in Scripts4Profit DXShopCart 4.30mc allows remote attackers to inject arbitrary web script or HTML via the keyword parameter.
References
Configurations
History
No history.
Information
Published : 2008-11-18 00:30
Updated : 2024-02-28 11:21
NVD link : CVE-2008-5119
Mitre link : CVE-2008-5119
CVE.ORG link : CVE-2008-5119
JSON object : View
Products Affected
scripts4profit
- dxshopcart
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')