CVE-2005-4314

Name of the Vulnerable Software and Affected Versions PPCal Shopping Cart versions 3.3.0 and earlier

Description The issue is related to a cross-site scripting (XSS) vulnerability. It allows remote attackers to inject arbitrary web script or HTML via the stop and user parameters.

Recommendations For versions 3.3.0 and earlier, update to a version later than 3.3.0 to resolve the issue. As a temporary workaround, consider restricting access to the ppcal.cgi script until a patch is available. Avoid using the stop and user parameters in the affected script until the issue is resolved.