Back to search
CVE-2005-2191
Published: Jul 10, 2005
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple cross-site scripting (XSS) vulnerabilities in Comersus shopping cart allow remote attackers to inject arbitrary web script or HTML via the (1) name parameter to comersus_backoffice_listAssignedPricesToCustomer.asp or (2) message parameter to comersus_backoffice_message.asp.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
15251
vdb-entry
x_refsource_BID
20050707 [Bday release] Comersus shopping cart has multiple Sql injection
mailing-list
x_refsource_BUGTRAQ
1014419
vdb-entry
x_refsource_SECTRACK
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now