Full title: AbanteCart 1.1.3 Cross Site Scripting 
Category: web applications
Platform: php
AbanteCart suffers from multiple reflected cross-site scripting
vulnerabilities. The issues are triggered when input passed via several
parameters to 'index.php' script is not properly sanitized before being
returned to the user. This can be exploited to execute arbitrary HTML
and script code in a user's browser session in context of an affected
site.

# 0day.today @ http://0day.today/