CVE-2009-2032 Information

Description

Cross-site scripting (XSS) vulnerability in search.asp in PDshopPro when downloaded before 20070308 allows remote attackers to inject arbitrary web script or HTML via the search parameter.

Reference

http://osvdb.org/55020 http://packetstorm.linuxsecurity.com/0906-exploits/pdshoppro-xss.txt http://secunia.com/advisories/34200