Unrated severityNVD Advisory· Published Sep 28, 2007· Updated Jun 16, 2026
CVE-2007-5136
CVE-2007-5136
Description
Cross-site scripting (XSS) vulnerability in DFD Cart 1.1.4 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Affected products
2cpe:2.3:a:dragonfrugal:dfd_cart:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:dragonfrugal:dfd_cart:*:*:*:*:*:*:*:*range: <=1.1.4
- (no CPE)range: <=1.1.4
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.