RSS   Vulnerabilities for 'Rwauction pro'   RSS

2007-07-03
 
CVE-2007-3540

 

 
Multiple cross-site scripting (XSS) vulnerabilities in search.asp in rwAuction Pro 5.0 allow remote attackers to inject arbitrary web script or HTML via the (1) search, (2) show, (3) searchtype, (4) catid, and (5) searchtxt parameters, a different version and vectors than CVE-2005-4060.

 
2005-12-07
 
CVE-2005-4060

 

 
Cross-site scripting (XSS) vulnerability in search.asp in rwAuction Pro 4.0 and 5.0 allows remote attackers to inject arbitrary web script or HTML via the searchtxt parameter.

 

 >>> Vendor: Rainworx 2 Products
Rwauction pro
Auctionworx


Copyright 2024, cxsecurity.com

 

Back to Top