Nextage : Security Vulnerabilities, CVEs,
Multiple cross-site scripting (XSS) vulnerabilities in NextAge Cart allow remote attackers to inject arbitrary web script or HTML via (1) the CatId parameter in a product category action in index.php or (2) the SearchWd parameter in an index search action in index.php.
Max CVSS
6.8
EPSS Score
4.22%
Published
2006-09-25
Updated
2018-10-17
Multiple cross-site scripting (XSS) vulnerabilities in myadmin/index.php in NextAge Shopping Cart allow remote attackers to inject arbitrary web script or HTML via the (1) username and (2) password parameters.
Max CVSS
5.8
EPSS Score
0.71%
Published
2006-04-26
Updated
2018-10-18
2 vulnerabilities found