Test ID:	1.3.6.1.4.1.25623.1.0.52048
Category:	CGI abuses : XSS
Title:	Comersus Comersus_Search_Item.ASP Cross-Site Scripting
Summary:	Comersus Comersus_Search_Item.ASP Cross-Site Scripting
Description:	The remote version of Comersus Cart, according to its version number, is vulnerable to a cross-site scripting attack via the Comersus_Search_Item.ASP script. Versions prior to 6.0.0 are known to be vulnerable. Solution : Upgrade to 6.0.0 or later. Risk factor : Medium
Cross-Ref:	BugTraq ID: 13125 Common Vulnerability Exposure (CVE) ID: CVE-2005-1188 http://lostmon.blogspot.com/2005/04/comersus-asp-shopping-cart-variable.html http://www.securityfocus.com/bid/13125 http://www.osvdb.org/15539 http://securitytracker.com/id?1013747 XForce ISS Database: comersus-comersussearchitem-xss(20147) http://xforce.iss.net/xforce/xfdb/20147
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: