Lucene search
MitreCVE-2011-4750HistoryDec 16, 2011 - 11:55 a.m.
CVE-2011-4750
2011-12-1611:55:10
CWE-79
mitre
web.nvd.nist.gov
20
cve-2011-4750
xss
smartertools
smarterstats
remote attack
web script
html
security vulnerability
nvd
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.9
Confidence
High
EPSS
0.002
Percentile
61.5%
Multiple cross-site scripting (XSS) vulnerabilities in SmarterTools SmarterStats 6.2.4100 allow remote attackers to inject arbitrary web script or HTML via crafted input to a PHP script, as demonstrated by Default.aspx and certain other files.
Affected configurations
Node
smartertoolssmarterstatsMatch6.2.4100
| Vendor | Product | Version | CPE |
|---|---|---|---|
| smartertools | smarterstats | 6.2.4100 | cpe:2.3:a:smartertools:smarterstats:6.2.4100:*:*:*:*:*:*:* |
Related
prion
prion
Cross site scripting
2011-12-16 11:55:00
cvelist
cvelist
CVE-2011-4750
2011-12-16 11:00:00
nvd
nvd
CVE-2011-4750
2011-12-16 11:55:10
openvas
openvas
SmarterTools SmarterStats Multiple Vulnerabilities
2011-12-21 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.9
Confidence
High
EPSS
0.002
Percentile
61.5%
Related for CVE-2011-4750