Cross-site scripting (XSS) vulnerability in CubeCart 3.0.12 and previous versions, when register_globals is enabled, allows remote malicious users to inject arbitrary web script or HTML via the links array.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
devellion cubecart |