RSS   Vulnerabilities for 'Nextage shopping cart'   RSS

2006-09-24
 
CVE-2006-4967

CWE-Other
 

 
Multiple cross-site scripting (XSS) vulnerabilities in NextAge Cart allow remote attackers to inject arbitrary web script or HTML via (1) the CatId parameter in a product category action in index.php or (2) the SearchWd parameter in an index search action in index.php.

 
2006-04-26
 
CVE-2006-2051

CWE-Other
 

 
Multiple cross-site scripting (XSS) vulnerabilities in myadmin/index.php in NextAge Shopping Cart allow remote attackers to inject arbitrary web script or HTML via the (1) username and (2) password parameters.

 


Copyright 2019, cxsecurity.com

 

Back to Top