CVE-2006-7125

2007-03-0601:00:00

mitre

www.cve.org

AI Score

5.6

Confidence

High

EPSS

0.011

Percentile

84.4%

JSON

Cross-site scripting (XSS) vulnerability in Joomla BSQ Sitestats 1.8.0 and 2.2.1 allows remote attackers to inject arbitrary web script or HTML via the HTTP Referer header, which is not properly handled when the administrator views site statistics.

References

secunia.com/secunia_research/2006-65/advisory/

www.securityfocus.com/archive/1/449125/100/0/threaded

www.securityfocus.com/bid/20614

www.vupen.com/english/advisories/2006/4090

exchange.xforce.ibmcloud.com/vulnerabilities/29661