Cross-site scripting (XSS) vulnerability in popuplargeimage.asp in CactuShop 5.x allows remote attackers to inject arbitrary web script or HTML via the strImageTag parameter.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Cactushop | Cactusoft | 5.0 (including) | 5.0 (including) |
Cactushop | Cactusoft | 5.1 (including) | 5.1 (including) |