Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-5341

Overview
Vulnerability Score 4.3 4.3
CVE Id CVE-2012-5341
Last Modified 30 Jan 2013 12:00:00
Published 09 Oct 2012 11:55:01
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-5341

Summary

Multiple cross-site scripting (XSS) vulnerabilities in statistik.php in Otterware StatIt 4 allow remote attackers to inject arbitrary web script or HTML via the (1) action parameter, (2) show parameter in a stat_tld action, or (3) order parameter in a stat_abfragen action.

Vulnerable Systems

Application

  • Otterware Statit 4.0


References

XF - statit-statistik-xss(72139)

BID - 51280

MISC - http://st2tea.blogspot.com/2012/01/otterware-statit4-cross-site-scripting.html

MISC - http://packetstormsecurity.org/files/108340/statit4-xss.txt

IT Risk Posture:

Learn More
divider


Vulnerabilities

Patches

News


Free Risk Assessment Tools

Application Scanner
Find vulnerabilities on your network.

divider

Device Scanner
Find vulnerabilities on your network.

divider

Patch Scanner
Find vulnerabilities on your network.

Last Updated: 27 May 2016 11:00:56