Arbitrary Web Script Injection Vulnerability in VP-ASP Shopping Cart 5.50

Arbitrary Web Script Injection Vulnerability in VP-ASP Shopping Cart 5.50

CVE-2005-3685 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in shopadmin.asp in VP-ASP Shopping Cart 5.50 allows remote attackers to inject arbitrary web script or HTML via the UserName parameter.

Learn more about our Web App Pen Testing.