Cross-site scripting (XSS) vulnerability in MySQL Auction 3.0 and previous versions allows remote malicious users to inject arbitrary web script or HTML via unspecified search module parameters, possibly the keyword parameter in the SearchZoom module.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
servers-r-us mysqlauction |
Vulmon