Unrated severityNVD Advisory· Published Jul 11, 2005· Updated Apr 16, 2026
CVE-2005-2191
CVE-2005-2191
Description
Multiple cross-site scripting (XSS) vulnerabilities in Comersus shopping cart allow remote attackers to inject arbitrary web script or HTML via the (1) name parameter to comersus_backoffice_listAssignedPricesToCustomer.asp or (2) message parameter to comersus_backoffice_message.asp.
Affected products
1- cpe:2.3:a:comersus_open_technologies:comersus_cart:*:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4News mentions
0No linked articles in our index yet.