Vulnerabilities > CVE-2006-0111 - Unspecified vulnerability in Boxcar Media Shopping Cart

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

boxcar-media

NVD

Published: 2006-01-07

Updated: 2024-11-21

Summary

Cross-site scripting vulnerability in index.php in Boxcar Media Shopping Cart allows remote attackers to inject arbitrary web script or HTML via the (1) parent or (2) pg parameter.

Vulnerable Configurations

Part	Description	Count
Application	Boxcar_Media Boxcar Media Shopping Cart *	1

References

http://osvdb.org/ref/22/22360-boxcar.txt
http://osvdb.org/ref/22/22360-boxcar.txt
http://www.osvdb.org/22360
http://www.osvdb.org/22360
http://www.vupen.com/english/advisories/2006/0080
http://www.vupen.com/english/advisories/2006/0080
https://exchange.xforce.ibmcloud.com/vulnerabilities/24019
https://exchange.xforce.ibmcloud.com/vulnerabilities/24019