CVE-2006-3001

Name of the Vulnerable Software and Affected Versions OkMall version 1.0

Description A cross-site scripting (XSS) issue exists, allowing remote attackers to inject arbitrary web script or HTML via the page parameter in the "search.php" file. This might be a result of another underlying issue, as the XSS is reflected in an error message.

Recommendations For OkMall version 1.0, consider restricting access to the "search.php" file until a fix is available, and avoid using the page parameter in this file to minimize the risk of exploitation.