Family: CGI abuses --> Category: attack
X-Cart Multiple Vulnerabilities Vulnerability Scan
Vulnerability Scan Summary
Checks for multiple vulnerabilities in X-Cart
Detailed Explanation for this Vulnerability Test
The remote web server contains a PHP application affected by several
The remote host is running X-Cart, a PHP-based shopping cart system.
The version installed on the remote host suffers from numerous SQL
injection and cross-site scripting vulnerabilities. Attackers can
exploit the former to influence database queries,resulting possibly in
a compromise of the affected application, disclosure of sensitive
data, or even attacks against the underlying database. and
exploitation of the cross-site scripting flaws can be used to steal
cookie-based authentication credentials and perform similar attacks.
See also :
Unknown at this time.
Medium / CVSS Base Score : 5
Click HERE for more information and discussions on this network vulnerability scan.