Description
Cross-site scripting (XSS) vulnerability in Amazing Flash AFCommerce Shopping Cart allows remote attackers to inject arbitrary web script or HTML via the "new review" text box.
Affected products
- amazing_flash_commerce / afcommerce_shopping_cart1.1.4 – 1.1.4
References
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/27847
- MISChttp://www.securityfocus.com/bid/19074
- MISChttp://www.securityfocus.com/archive/1/440848/100/100/threaded
- MISChttp://securityreason.com/securityalert/1255
- MISChttp://securitytracker.com/id?1016538
- MISChttp://www.securityfocus.com/archive/1/440589/100/0/threaded