Heap
21-07-08, 21:27
Cross-site scripting (XSS) vulnerability in forward_to_friend.php in ITechBids 7.0 Gold allows remote attackers to inject arbitrary web script or HTML via the productid parameter.
More... (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3237)
More... (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3237)