CVE-2014-8307

Name of the Vulnerable Software and Affected Versions C97net Cart Engine versions prior to 4.0

Description The issue allows remote attackers to inject arbitrary web script or HTML via the path parameter in the "drop down TOP menu (with path)" section or the print this page variable in the footer content block section. This can be demonstrated by manipulating the QUERY STRING to various PHP files, including "index.php", "checkout.php", "contact.php", "detail.php", "distro.php", "newsletter.php", "page.php", "profile.php", "search.php", "sitemap.php", "task.php", or "tell.php".

Recommendations For versions prior to 4.0, update to version 4.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the skins/default/outline.tpl template until a patch is available. Avoid using the path parameter in the "drop down TOP menu (with path)" section and the print this page variable in the footer content block section until the issue is resolved.