Family: CGI abuses : XSS --> Category: attack
Multiple CubeCart XSS vulnerabilities Vulnerability Scan
Vulnerability Scan Summary
Checks for XSS in index.php
Detailed Explanation for this Vulnerability Test
The remote web server contains several PHP scripts that are prone to
cross-site scripting attacks.
The remote version of CubeCart contains several cross-site scripting
vulnerabilities to due to its failure to properly sanitize user-supplied
input of certain variables to the 'index.php' and 'cart.php' scripts.
See also :
Upgrade to CubeCart version 3.0.4 or later.
Low / CVSS Base Score : 3
Click HERE for more information and discussions on this network vulnerability scan.