CVE-2005-4291 Information
Feb 14, 2021
cve
Description
Cross-site scripting (XSS) vulnerability in cart.cgi in ECTOOLS Onlineshop 1.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) product (2) category and (3) uid parameters.
Reference
http://pridels0.blogspot.com/2005/12/ectools-onlineshop-xss.html http://secunia.com/advisories/18028 http://www.osvdb.org/21731 http://www.securityfocus.com/bid/15891 http://www.vupen.com/english/advisories/2005/2919
Share on: