The CATALooK.netStore module up to and including 7.2.8 for DNN (formerly DotNetNuke) allows XSS via the /ViewEditGoogleMaps.aspx PortalID or CATSkin parameter, or the /ImageViewer.aspx link or desc parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
catalooksupport .netstore |