VYPR
Unrated severityNVD Advisory· Published Aug 6, 2004· Updated Jun 16, 2026

CVE-2004-0675

CVE-2004-0675

Description

Cross-site scripting (XSS) vulnerability in (1) cart32.exe or (2) c32web.exe in Cart32 shopping cart allows remote attackers to execute arbitrary web script via the cart32 parameter to a GetLatestBuilds command.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

11
  • cpe:2.3:a:mcmurtrey_whitaker_and_associates:cart32:2.5a:*:*:*:*:*:*:*+ 10 more
    • cpe:2.3:a:mcmurtrey_whitaker_and_associates:cart32:2.5a:*:*:*:*:*:*:*
    • cpe:2.3:a:mcmurtrey_whitaker_and_associates:cart32:2.6:*:*:*:*:*:*:*
    • cpe:2.3:a:mcmurtrey_whitaker_and_associates:cart32:3.0:*:*:*:*:*:*:*
    • cpe:2.3:a:mcmurtrey_whitaker_and_associates:cart32:3.1:*:*:*:*:*:*:*
    • cpe:2.3:a:mcmurtrey_whitaker_and_associates:cart32:3.5:*:*:*:*:*:*:*
    • cpe:2.3:a:mcmurtrey_whitaker_and_associates:cart32:3.5a:*:*:*:*:*:*:*
    • cpe:2.3:a:mcmurtrey_whitaker_and_associates:cart32:3.5a_build710:*:*:*:*:*:*:*
    • cpe:2.3:a:mcmurtrey_whitaker_and_associates:cart32:3.5_build619:*:*:*:*:*:*:*
    • cpe:2.3:a:mcmurtrey_whitaker_and_associates:cart32:4.4:*:*:*:*:*:*:*
    • cpe:2.3:a:mcmurtrey_whitaker_and_associates:cart32:5.0:*:*:*:*:*:*:*
    • (no CPE)

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.