Cross-site scripting (XSS) vulnerability in viewCart.asp in CartWIZ allows remote attackers to inject arbitrary web script or HTML via the message parameter.Referenceshttps://exchange.xforce.ibmcloud.com/vulnerabilities/21554http://marc.info/?l=bugtraq&m=112240525414263&w=2http://securitytracker.com/id?1014581http://www.securityfocus.com/bid/14386http://www.osvdb.org/18463
