Php Web Statistik Multiple Vulnerabilities

Risk: Low
Local: No
Remote: Yes

CVSS Base Score: 5/10
Impact Subscore: 2.9/10
Exploitability Subscore: 10/10
Exploit range: Remote
Attack complexity: Low
Authentication: No required
Confidentiality impact: None
Integrity impact: Partial
Availability impact: None

PHP Web Statistik Multiple Vulnerabilities Name Multiple Vulnerabilities in PHP Web Statistik Systems Affected PHP Web Statistik (verified on 1.4) Severity Medium Risk Vendor Advisory Author Francesco ?aScii? Ongaro (ascii at katamail . com) Date 20051119 PHP Web Statistik is vulnerable to javascript and HTML injection using the unchecked $lastnumber variable, proper input validation will fix. Just place an intval() at the right row. Other vulnerabilities has been discovered later. Advisory released on 20051119: Php Web Statistik Multiple Vulnerabilities

Vote for this issue:


Thanks for you vote!


Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

(*) - required fields.  
{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1
{{ x.comment }}

Copyright 2023,


Back to Top