Description
Multiple cross-site scripting (XSS) vulnerabilities in AlstraSoft EPay Pro 2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) payment or (2) send parameter.
Exploits (1)
References (3)
Core 3
Core References
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/14802
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=111247198021626&w=2
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/12974
Scores
EPSS
0.0417
EPSS Percentile
88.7%
Details
Status
published
Products (1)
alstrasoft/epay
2.0
Published
May 02, 2005
Tracked Since
Feb 18, 2026