Vulnerabilities > Zazzle > Store Builder > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-04-17 | CVE-2009-1320 | Cross-Site Scripting vulnerability in Zazzle Store Builder 1.0.2 Multiple cross-site scripting (XSS) vulnerabilities in include/zstore.php in Zazzle Store Builder 1.0.2 allow remote attackers to inject arbitrary web script or HTML via the (1) gridPage and (2) gridSort parameters. | 4.3 |