CVE-2005-4285 Information
Feb 14, 2021
cve
Description
Cross-site scripting (XSS) vulnerability in pdestore.cgi in Dick Copits PDEstore 1.8 and earlier allows remote attackers to inject arbitrary web script or HTML via (1) the search module parameter or the (2) product and (3) cart_id parameters.
Reference
http://pridels0.blogspot.com/2005/12/pdestore-xss-vuln.html http://secunia.com/advisories/18042 http://www.osvdb.org/21727 http://www.securityfocus.com/bid/15898 http://www.vupen.com/english/advisories/2005/2912
Share on: