CVE-2005-1823

Published: Jun 1, 2005Modified: Apr 16, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

Multiple cross-site scripting (XSS) vulnerabilities in Qualiteam X-Cart 4.0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) cat or (2) printable parameter to home.php, (3) productid or (4) mode parameter to product.php, (5) id parameter to error_message.php, (6) section parameter to help.php, (7) mode parameter to orders.php, (8) mode parameter to register.php, (9) mode parameter to search.php, or the (10) gcid or (11) gcindex parameter to giftcert.php.

Affected (1)

Products: Qualiteam: X Cart

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Qualiteam X Cart	Version 4.0.8

References (10)

http://marc.info/?l=bugtraq&m=111748583101076&w=2

Source: cve@mitre.org

http://secunia.com/advisories/15555

Source: cve@mitre.org

Exploit

http://securitytracker.com/id?1014077

Source: cve@mitre.org

Exploit

http://www.securityfocus.com/bid/13817

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/20774

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=111748583101076&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/15555

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

http://securitytracker.com/id?1014077

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

http://www.securityfocus.com/bid/13817

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/20774

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.