Cross-Site Scripting Flaw in NetArt Media iBoutique.MALL
CVE-2010-3466

Currently unrated

Key Information:

Vendor: Netartmedia
Status: Iboutique.mall
Vendor: CVE Published:; 17 September 2010

🔔 Create Netartmedia Vulnerability Alert

What is CVE-2010-3466?

The hosted_signup module of NetArt Media iBoutique.MALL 1.2 contains a cross-site scripting vulnerability in the index.php file. This flaw allows remote attackers to inject arbitrary web scripts or HTML through the tmpl parameter. Exploiting this vulnerability can lead to unauthorized actions executed on behalf of unsuspecting users, compromising their security.

References

http://www.securityfocus.com/bid/43146

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/61737

vdb-entryx_refsource_XF

http://pridels-team.blogspot.com/2010/09/iboutiquemall-12...

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 17, 2010
Vulnerability Reserved
Sep 17, 2010

CVE-2010-3466 Data

JSON