Vulnerabilities > Idevspot > Idevcart > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-12-28 | CVE-2009-4425 | Cross-Site Scripting vulnerability in Idevspot Idevcart 1.09 Cross-site scripting (XSS) vulnerability in index.php in iDevCart 1.09 allows remote attackers to inject arbitrary web script or HTML via the SEARCH parameter in a browse action. | 4.3 |