Cross-site scripting (XSS) vulnerability in search.php in JShop E-Commerce Server allows remote attackers to inject arbitrary web script or HTML via the xSearch parameter.
References
Link | Resource |
---|---|
http://secunia.com/advisories/10825 | Vendor Advisory |
http://securitytracker.com/id?1008988 | Exploit Vendor Advisory |
http://www.osvdb.org/3889 | Exploit Patch |
http://www.securityfocus.com/bid/9609 | Exploit Vendor Advisory |
http://www.systemsecure.org/advisories/ssadvisory09022004.php | Exploit Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/15100 |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2004-02-07 05:00
Updated : 2024-02-04 16:31
NVD link : CVE-2004-2084
Mitre link : CVE-2004-2084
CVE.ORG link : CVE-2004-2084
JSON object : View
Products Affected
jshop_e-commerce
- jshop_server
- jshop_professional
CWE