Multiple cross-site scripting (XSS) vulnerabilities in Storesprite 7 and earlier allow remote attackers to inject arbitrary web script or HTML via the next parameter to (1) addaddress.php, (2) editshipdetails.php, (3) register.php, or (4) login.php in secure/.
References
Configurations
History
No history.
Information
Published : 2007-08-13 21:17
Updated : 2024-02-04 17:13
NVD link : CVE-2007-4307
Mitre link : CVE-2007-4307
CVE.ORG link : CVE-2007-4307
JSON object : View
Products Affected
storesprite
- storesprite
CWE