CVE-2005-1823

Qualiteam X-cart - XSS

Title source: rule
STIX 2.1

Description

Multiple cross-site scripting (XSS) vulnerabilities in Qualiteam X-Cart 4.0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) cat or (2) printable parameter to home.php, (3) productid or (4) mode parameter to product.php, (5) id parameter to error_message.php, (6) section parameter to help.php, (7) mode parameter to orders.php, (8) mode parameter to register.php, (9) mode parameter to search.php, or the (10) gcid or (11) gcindex parameter to giftcert.php.

Exploits (8)

exploitdb WRITEUP VERIFIED
by CENSORED Search Vulnerabilities · textwebappsphp
https://www.exploit-db.com/exploits/25765
exploitdb WRITEUP VERIFIED
by CENSORED Search Vulnerabilities · textwebappsphp
https://www.exploit-db.com/exploits/25764
exploitdb WRITEUP VERIFIED
by CENSORED Search Vulnerabilities · textwebappsphp
https://www.exploit-db.com/exploits/25760
exploitdb WRITEUP VERIFIED
by CENSORED Search Vulnerabilities · textwebappsphp
https://www.exploit-db.com/exploits/25763
exploitdb WRITEUP VERIFIED
by CENSORED Search Vulnerabilities · textwebappsphp
https://www.exploit-db.com/exploits/25759
exploitdb WRITEUP VERIFIED
by CENSORED Search Vulnerabilities · textwebappsphp
https://www.exploit-db.com/exploits/25762
exploitdb WRITEUP VERIFIED
by CENSORED Search Vulnerabilities · textwebappsphp
https://www.exploit-db.com/exploits/25766
exploitdb WRITEUP VERIFIED
by CENSORED Search Vulnerabilities · textwebappsphp
https://www.exploit-db.com/exploits/25761

References (5)

Core 5
Core References
Exploit vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1014077
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=111748583101076&w=2
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/20774
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/13817
Exploit third-party-advisory x_refsource_secunia
http://secunia.com/advisories/15555

Scores

EPSS 0.0078
EPSS Percentile 73.7%

Details

Status published
Products (1)
qualiteam/x-cart 4.0.8
Published Jun 01, 2005
Tracked Since Feb 18, 2026