CVE-2007-4307

Multiple cross-site scripting (XSS) vulnerabilities in Storesprite 7 and earlier allow remote attackers to inject arbitrary web script or HTML via the next parameter to (1) addaddress.php, (2) editshipdetails.php, (3) register.php, or (4) login.php in secure/.
Configurations

Configuration 1 (hide)

cpe:2.3:a:storesprite:storesprite:7:*:*:*:*:*:*:*

History

No history.

Information

Published : 2007-08-13 21:17

Updated : 2024-02-04 17:13


NVD link : CVE-2007-4307

Mitre link : CVE-2007-4307

CVE.ORG link : CVE-2007-4307


JSON object : View

Products Affected

storesprite

  • storesprite