|Category:||CGI abuses : XSS|
|Title:||Comersus Cart Username Field HTML Injection|
The remote version of Comersus Cart, according to its version
number, is vulnerable to an HTML injection vulnerability that
can be used to perform cross-site scripting attacks.
Versions up to 6.0.3 are known to be vulnerable.
Solution : Upgrade to a later version.
Risk factor : Medium
BugTraq ID: 13000|
Common Vulnerability Exposure (CVE) ID: CVE-2005-1010
XForce ISS Database: comersus-username-xss(19962)
|Copyright||Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com|
|This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.