When making changes in Admin, to Products and Categories, a string of XSS errrors occur.
This happens if there are hex coded CR+LF, spaces and other entities, CSS and/or internal/external links. In short, a mess.
The following needed to be disabled:
if osCommerce admin panel placed in /admin/ folder it shouldn't happen.
If ANYONE can make sense or inference from this then please enlighten me. I read it to mean that osCommerce admin panel should be installed in /admin/ folder (sic) ((it’s a subdirectory!)). Which is total rubbish.