Description
Cross-site scripting (XSS) vulnerability in fullview.php in AlstraSoft Template Seller Pro allows remote attackers to inject arbitrary web script or HTML via the tempid parameter.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by night_warrior771 · textwebappsphp
https://www.exploit-db.com/exploits/27078
References (4)
Core 4
Core References
Exploit vdb-entry
x_refsource_osvdb
http://www.osvdb.org/22746
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/16233
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/24235
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/421916/100/0/threaded
Scores
EPSS
0.0042
EPSS Percentile
61.7%
Details
Status
published
Products (1)
alstrasoft/template_seller
Published
Jan 16, 2006
Tracked Since
Feb 18, 2026