CVE-2007-5136 Information

Description

Cross-site scripting (XSS) vulnerability in DFD Cart 1.1.4 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Reference

http://osvdb.org/39625 http://sourceforge.net/forum/forum.php?forum_id=738710 http://www.vupen.com/english/advisories/2007/3255