Multiple cross-site scripting (XSS) vulnerabilities in AlstraSoft EPay Enterprise 3.0 (formerly DoPays) allow remote attackers to inject arbitrary web script or HTML via multiple unspecified parameters in (1) profile.htm, (2) card.htm, (3) bank.htm, (4) subscriptions.htm, (5) send.htm, (6) request.htm, (7) forgot.htm, (8) escrow.htm, (9) donations.htm, and (10) products.htm.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published: 2005-12-28T01:00:00
Updated: 2024-08-07T23:46:05.599Z
Reserved: 2005-12-28T00:00:00
Link: CVE-2005-4530

No data.

Status : Modified
Published: 2005-12-28T01:03:00.000
Modified: 2024-11-21T00:04:29.990
Link: CVE-2005-4530

No data.