CVE-2003-0523

ProductCart - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in msg.asp for certain versions of ProductCart allow remote attackers to execute arbitrary web script via the message parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by atomix · textwebappsasp

https://www.exploit-db.com/exploits/22866

View Code ZIP pw:eip

References (1)

Core 1

Core References

Mailing List mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=105761696706800&w=2

Scores

EPSS 0.0040

EPSS Percentile 61.0%

Details

Status published

Products (16)

early_impact/productcart 1.5

early_impact/productcart 1.6b

early_impact/productcart 1.6b001

early_impact/productcart 1.6b002

early_impact/productcart 1.6b003

early_impact/productcart 1.6br

early_impact/productcart 1.6br001

early_impact/productcart 1.6br003

early_impact/productcart 1.5002

early_impact/productcart 1.5003

... and 6 more

Published Aug 18, 2003

Tracked Since Feb 18, 2026