Cross-site scripting (XSS) vulnerability in DIC shop_v50 3.0 and earlier and shop_v52 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
References
Configurations
Configuration 1 (hide)
|
Information
Published : 2008-09-05 08:08
Updated : 2008-09-05 08:08
NVD link : CVE-2008-3935
Mitre link : CVE-2008-3935
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
d-ic
- shop_v52
- shop_v50