CVE-2005-4293
Cross-site scripting (XSS) vulnerability in cp-app.cgi in ClickCartPro (CCP) 5.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the affl parameter.
Date published : 2005-12-16
http://www.securityfocus.com/bid/15896
http://pridels0.blogspot.com/2005/12/clickcartpro-ccp-xss-vuln.html