Unrated severityNVD Advisory· Published Feb 25, 2009· Updated Apr 23, 2026
CVE-2008-6278
CVE-2008-6278
Description
Multiple cross-site scripting (XSS) vulnerabilities in product.php in RakhiSoftware Price Comparison Script (aka Shopping Cart) allow remote attackers to inject arbitrary web script or HTML via the (1) category_id and (2) subcategory_id parameters.
Affected products
1- cpe:2.3:a:rakhisoftware:rakhisoftware_shopping_cart:-:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- packetstormsecurity.com/0811-exploits/rakhi-sqlxssfpd.txtnvdExploit
- www.securityfocus.com/bid/32563nvdExploit
- secunia.com/advisories/32950nvdVendor Advisory
- osvdb.org/50326nvd
News mentions
0No linked articles in our index yet.