Vulnerabilities > CVE-2006-1687 - Cross-Site Scripting vulnerability in Apt-Webshop-System 3.0/4.0
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE network
apt
Summary
Cross-site scripting (XSS) vulnerability in APT-webshop-system 4.0 PRO, 3.0 BASIC, and 3.0 LIGHT allows remote attackers to inject arbitrary web script or HTML via the message parameter, probably involving the basket functionality.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 3 |