Maciej Gojny

**Name of the Vulnerable Software and Affected Versions** ASPPilot Pilot Cart version 7.3 **Description** The issue allows remote attackers to inject arbitrary web script or HTML, potentially leading to cross-site scripting (XSS) attacks. This can be achieved via several parameters, including the `countrycode` parameter to "contact.asp", `USERNAME` parameter to "gateway.asp" and "cart.asp", and a specific parameter to "quote.asp" and "buyitnow.asp". **Recommendations** For ASPPilot Pilot Cart version 7.3, consider restricting access to the vulnerable parameters, such as `countrycode`, `USERNAME`, until a patch is available. As a temporary workaround, avoid using these parameters in the affected API endpoints. Additionally, restrict access to the vulnerable modules "contact.asp", "gateway.asp", "cart.asp", "quote.asp", and "buyitnow.asp" to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** ASPilot Pilot Cart version 7.3 **Description** The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved via several parameters, including the `article` parameter to "kb.asp", a specific parameter to "cart.asp", the `countrycode` parameter to "contact.asp", and the `srch` parameter to "search.asp". **Recommendations** For ASPilot Pilot Cart version 7.3, consider restricting access to the vulnerable API endpoints, such as "kb.asp", "cart.asp", "contact.asp", and "search.asp", until a patch is available. As a temporary workaround, avoid using the `article`, `countrycode`, and `srch` parameters in their respective endpoints to minimize the risk of exploitation.