Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in settings.inc.php for CubeCart 2.0.0 through 2.0.5, as used in multiple PHP files, allows remote attackers to inject arbitrary HTML or web script via the (1) cat_id, (2) PHPSESSID, (3) view_doc, (4) product, (5) session, (6) catname, (7) search, or (8) page parameters.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
CubeCart多个跨站脚本攻击漏洞
Vulnerability Description
CubeCart 2.0.0至2.0.5的settings.inc.php当在多个PHP文件中使用时,其包含的跨站脚本攻击(XSS)漏洞允许远程攻击者通过(1)cat_id,(2)PHPSESSID,(3)view_doc,(4)product,(5)session,(6)catname,(7)search或(8)page参数来注入任意HTML或Web脚本。
CVSS Information
N/A
Vulnerability Type
N/A