PT-2006-5982 · Eazy Cart · Eazy Cart
Published
2006-10-12
·
Updated
2018-10-17
·
CVE-2006-5247
CVSS v2.0
6.8
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Eazy Cart (affected versions not specified)
Description
The issue concerns multiple cross-site scripting (XSS) vulnerabilities. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML, potentially through the
des and qty parameters in an add action via "easycart.php" or other unspecified vectors.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Eazy Cart