NVD

Id
61334  
Name
CVE-2006-2649  
Description
Multiple cross-site scripting (XSS) vulnerabilities in (a) search.php, (b) search_cat.php, (c) search_price.php, and (d) product_details.php in the cosmicshop directory for CosmicShoppingCart allow remote attackers to inject arbitrary web script or HTML via multiple unspecified parameters, as demonstrated by the (1) query parameter in search.php and the (2) data parameter in search_cat.php.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2016-12-20  
Published
2006-05-30  
Modified Date
2011-09-13  
Seq
2006-2649  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
316931 61334 CVE-2006-2649 20060526 ZH2006-20 SA: CosmicShoppingCart Multiple Vulnerabilities  View
316932 61334 CVE-2006-2649 1016164  View
316933 61334 CVE-2006-2649 18709  View
316934 61334 CVE-2006-2649 ADV-2006-1984  View
316935 61334 CVE-2006-2649 http://www.zone-h.org/advisories/read/id=9058  View
316936 61334 CVE-2006-2649 cosmicshoppingcart-search-xss(26681)  View

Related JVN