VYPR
Unrated severityNVD Advisory· Published Jun 21, 2007· Updated Jun 16, 2026

CVE-2007-3324

CVE-2007-3324

Description

Multiple cross-site scripting (XSS) vulnerabilities in Comersus Cart 7.07 allow remote attackers to inject arbitrary web script or HTML via the redirectUrl parameter to (1) comersus_customerAuthenticateForm.asp or (2) comersus_message.asp, different vectors than CVE-2004-0681.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:comersus_open_technologies:comersus_cart:7.07:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:comersus_open_technologies:comersus_cart:7.07:*:*:*:*:*:*:*
    • (no CPE)range: <=7.07

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.