Vulnerabilities > CVE-2004-2174 - Multiple vulnerability in EarlyImpact ProductCart

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

early-impact

NVD

Published: 2004-12-31

Updated: 2017-07-11

Summary

Cross-site scripting (XSS) vulnerability in Custva.asp in EarlyImpact ProductCart allows remote attackers to inject arbitrary Javascript via the redirectUrl parameter.

Vulnerable Configurations

Part	Description	Count
Application	Early_Impact Early Impact Productcart 1.5 Early Impact Productcart 1.6B Early Impact Productcart 1.6B001 Early Impact Productcart 1.6B002 Early Impact Productcart 1.6B003 Early Impact Productcart 1.6Br Early Impact Productcart 1.6Br001 Early Impact Productcart 1.6Br003 Early Impact Productcart 1.5002 Early Impact Productcart 1.5003 Early Impact Productcart 1.5003R Early Impact Productcart 1.5004 Early Impact Productcart 1.6002 Early Impact Productcart 1.6003 Early Impact Productcart 2.0 Early Impact Productcart 2.0Br000 Early Impact Productcart 2.5	17

Summary

Vulnerable Configurations

References