Security Advisory

CVE-2006-5960

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-11-17 01:00:00

Last updated 2024-08-07 20:12:31

Assigner mitre

State PUBLISHED

Description

Multiple cross-site scripting (XSS) vulnerabilities in account_login.asp in A+ Store E-Commerce allow remote attackers to inject arbitrary web script or HTML via the (1) username (txtUserName) and (2) password (txtPassword) parameters. NOTE: portions of these details are obtained from third party information.

← Browse all CVEs View on cve.org ↗