QwikSec

Security Database

CVE

CWE

Training

CVE-2012-5341

Published: Oct 9, 2012

Modified: Aug 6, 2024

PUBLISHED

Description

Multiple cross-site scripting (XSS) vulnerabilities in statistik.php in Otterware StatIt 4 allow remote attackers to inject arbitrary web script or HTML via the (1) action parameter, (2) show parameter in a stat_tld action, or (3) order parameter in a stat_abfragen action.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://st2tea.blogspot.com/2012/01/otterware-statit4-cross-site-scripting.html

x_refsource_MISC

vdb-entry

x_refsource_BID

statit-statistik-xss(72139)

vdb-entry

x_refsource_XF

http://packetstormsecurity.org/files/108340/statit4-xss.txt

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.