Multiple cross-site scripting (XSS) vulnerabilities in Garry Glendown Shopping Cart 0.9 allow remote attackers to inject arbitrary web script or HTML via the (1) shop name field in (a) editshop.php, (b) edititem.php, and (c) index.php; and via the (2) item field in editshop.php and edititem.php.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2006-07-13T00:00:00

Updated: 2024-08-07T18:30:34.409Z

Reserved: 2006-07-12T00:00:00

Link: CVE-2006-3542

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2006-07-13T00:05:00.000

Modified: 2024-11-21T00:13:51.437

Link: CVE-2006-3542

cve-icon Redhat

No data.