Visit our newest sister site!
Hundreds of free aircraft flight manuals
Civilian • Historical • Military • Declassified • FREE!


TUCoPS :: Web :: e-commerce, shopping carts :: b06-4800.htm

NextAge Cart Cross-Site Scripting multiple Vulnerabilities



NextAge Cart Cross-Site Scripting multiple Vulnerabilities
NextAge Cart Cross-Site Scripting multiple Vulnerabilities



Vulnerable:NextAge Cart Cross-Site Scripting Vulnerability.=0D
=0D
Venedor site : http://www.nextagecart.com=0D 
Critical Level : Dangerous=0D
Exploiting this issue could allow an attacker to steal cookie-based=0D
authentication credentials and to launch other attacks.=0D
=0D
Exploit :=0D
http://www.example.com/[path]/index.php?main=category&sub=product&CatId=[xss]=0D 
=0D
http://www.example.com/[path]/index.php?SearchOpt=1&main=search&sub=index&SearchWd=[xss]=0D 


TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH