CVE-2006-4967

Name of the Vulnerable Software and Affected Versions NextAge Cart (affected versions not specified)

Description The issue concerns multiple cross-site scripting (XSS) vulnerabilities. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via specific parameters in index.php, including the CatId parameter in a product category action and the SearchWd parameter in an index search action.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.