Cross-site scripting (XSS) vulnerability in index.php in Comdev eCommerce 3.0 and 3.1 allows remote malicious users to inject arbitrary web script or HTML via Javascript in the onMouseOver event of an "A" tag in a review message.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
comdev comdev ecommerce 3.1 |
||
comdev comdev ecommerce 3.0 |
Vulmon