Lucene search
MitreCVELIST:CVE-2011-2153HistoryMay 20, 2011 - 10:00 p.m.
CVE-2011-2153
2011-05-2022:00:00
mitre
www.cve.org
1
Login.aspx in the SmarterTools SmarterStats 6.0 web server supports URLs containing txtUser and txtPass parameters in the query string, which makes it easier for context-dependent attackers to discover credentials by reading (1) web-server access logs, (2) web-server Referer logs, or (3) the browser history, related to a βcross-domain Referer leakageβ issue.
Related
cve
cve
CVE-2011-2153
2011-05-20 22:55:05
prion
prion
Cross site scripting
2011-05-20 22:55:00
nvd
nvd
CVE-2011-2153
2011-05-20 22:55:05
openvas
openvas
SmarterMail Multiple Vulnerabilities (May 2011)
2011-06-01 00:00:00