Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in Qualiteam X-Cart 4.0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) cat or (2) printable parameter to home.php, (3) productid or (4) mode parameter to product.php, (5) id parameter to error_message.php, (6) section parameter to help.php, (7) mode parameter to orders.php, (8) mode parameter to register.php, (9) mode parameter to search.php, or the (10) gcid or (11) gcindex parameter to giftcert.php.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Qualiteam X-Cart 多个跨站脚本攻击漏洞
Vulnerability Description
Qualiteam X-Cart 4.0.8 版本中存在多个跨站脚本攻击(XSS)漏洞,远程攻击者可通过:(1) 提交到home.php的cat参数(2)printable参数, (3)到product.php的productid参数(4)mode参数,(5)到error_message.php的id参数,(6)到help.php的section参数,(7)到orders.php的mode参数,(8)到register.php的mode参数,(9)到search.php的mode参数, 或(10)到gif
CVSS Information
N/A
Vulnerability Type
N/A