Unrated severityNVD Advisory· Published Jul 3, 2002· Updated Apr 16, 2026

CVE-2002-0553

Description

Cross-site scripting vulnerability in SunShop 2.5 and earlier allows remote attackers to gain administrative privileges to SunShop by injecting the script into fields during new customer registration.

Affected products

Turnkey Solutions/Sunshop Shopping Cart6 versions
cpe:2.3:a:turnkey_solutions:sunshop_shopping_cart:1.5:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:turnkey_solutions:sunshop_shopping_cart:1.5:*:*:*:*:*:*:*
- cpe:2.3:a:turnkey_solutions:sunshop_shopping_cart:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:turnkey_solutions:sunshop_shopping_cart:2.1:*:*:*:*:*:*:*
- cpe:2.3:a:turnkey_solutions:sunshop_shopping_cart:2.2:*:*:*:*:*:*:*
- cpe:2.3:a:turnkey_solutions:sunshop_shopping_cart:2.4:*:*:*:*:*:*:*
- cpe:2.3:a:turnkey_solutions:sunshop_shopping_cart:2.5:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.iss.net/security_center/static/8840.phpnvdPatchVendor Advisory
www.securityfocus.com/bid/4506nvdExploitVendor Advisory
archives.neohapsis.com/archives/bugtraq/2002-04/0154.htmlnvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.006
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000