Bugsalert.com
Security News about Viruses, Spyware,
Trojans, Malware, XSS attacks.
Home | Recent | Sitemap

CVE-2007-6646 (LiveCart)
BugsAlert Home > CVE-2007-6646 (LiveCart)
 
 

Multiple cross-site scripting (XSS) vulnerabilities in LiveCart 1.0.1 allow remote attackers to inject arbitrary web script or HTML via (1) the return parameter to user/remindPassword, (2) the q parameter to the category script, (3) the return parameter to the order script, or (4) the email parameter to user/remindComplete.




Original Source: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6646

Learn more about CVE-2007-6646 (LiveCart)
 
Tags: cve-2007-6646 livecart

Related Items
      MS07-064 ? Critical: Vulnerabilities in DirectX Could Allow Remote Code Execution (941568) - Version:1.0

      CVE-2008-5697 (skype_extension_for_firefox)

      FrSIRT - Mandriva Security Update Fixes PCRE Buffer Overflow Vulnerability

      MS07-049 - Important: Vulnerability in Virtual PC and Virtual Server Could Allow Elevation of Privilege (937986) - Version:2.0

      Is there an AV working from CD? URGENT!

      Microsoft Security Advisory (912840): Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution. - 1/5/2006

      AlstraSoft E-Friends "seid" Parameter Remote SQL Injection Vulnerability

 
© 2007-2009 BugsAlert.com Original template by Arcsin Hosted By 1and1


Pixel