Cross-Site Scripting Vulnerability in Agora.cgi with Debug Mode Enabled

Cross-Site Scripting Vulnerability in Agora.cgi with Debug Mode Enabled

CVE-2001-1199 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Cross-site scripting vulnerability in agora.cgi for Agora 3.0a through 4.0g, when debug mode is enabled, allows remote attackers to execute Javascript on other clients via the cart_id parameter.

Learn more about our Web Application Penetration Testing UK.