Heap
05-09-08, 18:41
Cross-site scripting (XSS) vulnerability in DIC shop_v50 3.0 and earlier and shop_v52 2.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
More... (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3935)
More... (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3935)