XSS in Opensolution Quick.cart
CVE-2008-4140
Cross-site scripting (XSS) vulnerability in admin.php in Quick.Cart 3.1 allows remote attackers to inject arbitrary web script or HTML via the query string.
Vulnerability class: XSS (Cross-Site Scripting)
EPSS: 0.015 (70.4th percentile) — read the EPSS interpretation.
Affected products
- Opensolution Quick.cart — versions 3.1
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (Exploit, vdb-entry, x_refsource_BID)
- cve@mitre.org (x_refsource_SECUNIA, third-party-advisory)
- cve@mitre.org (vdb-entry, x_refsource_XF)
- cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)