CVE-2014-6618 Information

Description

Cross-site scripting (XSS) vulnerability in Your Online Shop allows remote attackers to inject arbitrary web script or HTML via the products_id parameter.

Reference

http://packetstormsecurity.com/files/128336/Your-Online-Shop-Cross-Site-Scripting.html http://www.securityfocus.com/bid/70073 https://exchange.xforce.ibmcloud.com/vulnerabilities/96163