Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-5341

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2012-5341
Last Modified 30 Jan 2013 12:00:00
Published 09 Oct 2012 11:55:01
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-5341

Summary

Multiple cross-site scripting (XSS) vulnerabilities in statistik.php in Otterware StatIt 4 allow remote attackers to inject arbitrary web script or HTML via the (1) action parameter, (2) show parameter in a stat_tld action, or (3) order parameter in a stat_abfragen action.

Vulnerable Systems

Application

  • Otterware Statit 4.0


References

XF - statit-statistik-xss(72139)

BID - 51280

MISC - http://st2tea.blogspot.com/2012/01/otterware-statit4-cross-site-scripting.html

MISC - http://packetstormsecurity.org/files/108340/statit4-xss.txt


Last Updated: 27 May 2016 11:00:56