Cart32 GetLatestBuilds XSS Network Vulnerability

Summary

The remote web server contains a CGI which is contains a cross site scripting vulnerability. Description : The remote host is using Cart32, a shopping cart software. There is a bug in this software which makes it vulnerable to cross site scripting attacks. An attacker may use this bug to steal the credentials of the legitimate users of this site.

Solution

Upgrade to the newest version of this software

Severity

Classification

CVE CVE-2004-0675

CVSS	Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Aker Secure Mail Gateway Cross-Site Scripting Vulnerability
Aardvark Topsites <= 4.2.2 Remote File Inclusion Vulnerability
Apache Tomcat Directory Listing and File disclosure
Apache Roller 'q' Parameter Cross Site Scripting Vulnerability
Apache Tiles Multiple XSS Vulnerability

Take action and discover your vulnerabilities