Unrated severityNVD Advisory· Published Dec 16, 2005· Updated Apr 16, 2026
CVE-2005-4293
CVE-2005-4293
Description
Cross-site scripting (XSS) vulnerability in cp-app.cgi in ClickCartPro (CCP) 5.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the affl parameter.
Affected products
12cpe:2.3:a:kryptronic:clickcartpro:1.0:*:*:*:*:*:*:*+ 11 more
- cpe:2.3:a:kryptronic:clickcartpro:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:kryptronic:clickcartpro:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:kryptronic:clickcartpro:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:kryptronic:clickcartpro:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:kryptronic:clickcartpro:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:kryptronic:clickcartpro:3.3:*:*:*:*:*:*:*
- cpe:2.3:a:kryptronic:clickcartpro:3.4:*:*:*:*:*:*:*
- cpe:2.3:a:kryptronic:clickcartpro:3.5:*:*:*:*:*:*:*
- cpe:2.3:a:kryptronic:clickcartpro:3.6:*:*:*:*:*:*:*
- cpe:2.3:a:kryptronic:clickcartpro:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:kryptronic:clickcartpro:5.0:*:*:*:*:*:*:*
- cpe:2.3:a:kryptronic:clickcartpro:5.1:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
7- www.securityfocus.com/bid/15896nvdExploit
- secunia.com/advisories/17927nvdVendor Advisory
- pridels0.blogspot.com/2005/12/clickcartpro-ccp-xss-vuln.htmlnvd
- www.attrition.org/pipermail/vim/2006-January/000510.htmlnvd
- www.clickcartpro.com/forum/index.phpnvd
- www.osvdb.org/21716nvd
- www.vupen.com/english/advisories/2005/2914nvd
News mentions
0No linked articles in our index yet.