Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6297

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2008-6297
Last Modified 13 Mar 2009 01:45:39
Published 26 Feb 2009 11:17:19
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-6297

Summary

Cross-site scripting (XSS) vulnerability in order.php in DHCart allows remote attackers to inject arbitrary web script or HTML via the (1) domain and (2) d1 parameters.

Vulnerable Systems

Application

  • Dhcart 3.84


References

XF - dhcart-order-xss(46339)

BID - 32117

SECUNIA - 32555

MISC - http://lostmon.blogspot.com/2008/11/dhcart-multiple-variable-xss-and-stored.html


Last Updated: 27 May 2016 10:49:08