Multiple cross-site scripting (XSS) vulnerabilities in zencart-ja (aka Zen Cart Japanese edition) 1.3 jp up to and including 1.3.0.2 jp8 and 1.5 ja up to and including 1.5.1 ja allow remote malicious users to inject arbitrary web script or HTML via a crafted parameter, related to admin/includes/init_includes/init_sanitize.php and includes/init_includes/init_sanitize.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zen-cart zen cart 1.5.0 |
||
zen-cart zen cart 1.3.0.0 |
||
zen-cart zen cart 1.3.0.1 |
||
zen-cart zen cart 1.3.0.2 |
||
zen-cart zen cart 1.5.1 |