CVE Vulnerabilities

CVE-2003-0523

Published: Aug 18, 2003 | Modified: Oct 18, 2016
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Cross-site scripting (XSS) vulnerability in msg.asp for certain versions of ProductCart allow remote attackers to execute arbitrary web script via the message parameter.

Affected Software

Name Vendor Start Version End Version
Productcart Early_impact 1.5 (including) 1.5 (including)
Productcart Early_impact 1.6b (including) 1.6b (including)
Productcart Early_impact 1.6b001 (including) 1.6b001 (including)
Productcart Early_impact 1.6b002 (including) 1.6b002 (including)
Productcart Early_impact 1.6b003 (including) 1.6b003 (including)
Productcart Early_impact 1.6br (including) 1.6br (including)
Productcart Early_impact 1.6br001 (including) 1.6br001 (including)
Productcart Early_impact 1.6br003 (including) 1.6br003 (including)
Productcart Early_impact 1.5002 (including) 1.5002 (including)
Productcart Early_impact 1.5003 (including) 1.5003 (including)
Productcart Early_impact 1.5003r (including) 1.5003r (including)
Productcart Early_impact 1.5004 (including) 1.5004 (including)
Productcart Early_impact 1.6002 (including) 1.6002 (including)
Productcart Early_impact 1.6003 (including) 1.6003 (including)
Productcart Early_impact 2 (including) 2 (including)
Productcart Early_impact 2br000 (including) 2br000 (including)

References