CVE-2006-3141

CVE-2006-3141

EPSS 1.3%

Cross-site scripting (XSS) vulnerability in details.cfm in Tradingeye Shop R4 and earlier allows remote attackers to inject arbitrary web script or HTML via the image parameter.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://pridels0.blogspot.com/2006/06/tradingeye-shop-r4-xss.html http://secunia.com/advisories/20736 https://exchange.xforce.ibmcloud.com/vulnerabilities/27202 http://www.osvdb.org/26637 http://www.securityfocus.com/bid/18526 http://www.vupen.com/english/advisories/2006/2424