Cross-Site Scripting in VirtueMart E-Commerce Software
CVE-2007-1096

Currently unrated

Key Information:

Vendor: Virtuemart
Status: Virtuemart
Vendor: CVE Published:; 26 February 2007

What is CVE-2007-1096?

A cross-site scripting vulnerability exists in the ps_cart.php file of the VirtueMart e-commerce solution, allowing remote attackers to inject arbitrary web scripts or HTML through unspecified vectors. This could potentially compromise user data and exploit user sessions, leading to unauthorized actions within web applications. The vulnerability highlights the importance of securing input handling methods to mitigate risk.

References

http://www.vupen.com/english/advisories/2007/0817

vdb-entryx_refsource_VUPEN

http://virtuemart.svn.sourceforge.net/viewvc/%2Acheckout%...

x_refsource_CONFIRM

http://secunia.com/advisories/24399

third-party-advisoryx_refsource_SECUNIA

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 26, 2007
Vulnerability Reserved
Feb 26, 2007

JSON

Virtuemart

What is CVE-2007-1096?

References

Timeline