RSS   Vulnerabilities for 'Cactushop'   RSS

2010-04-22
 
CVE-2010-1486

CWE-79
 

 
Multiple cross-site scripting (XSS) vulnerabilities in _invoice.asp in CactuShop before 6.155 allow remote attackers to inject arbitrary web script or HTML via the (1) billing address or (2) shipping address.

 


Copyright 2024, cxsecurity.com

 

Back to Top