|
|
Family: CGI abuses : XSS --> Category: infos
Pinnacle Cart XSS Vulnerability Scan
Vulnerability Scan Summary
Checks XSS in Pinnacle Cart
Detailed Explanation for this Vulnerability Test
The remote host runs Pinnacle Cart, a shopping cart software
written in PHP.
The remote version of this software is vulnerable to cross-site
scripting attacks due to a lack of sanity checks on the 'pg' parameter
in the script 'index.php'.
Solution: Upgrade to Pinnacle Cart 3.3 or newer
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|
