CVE-2007-1714
CcCounter 2.0 contains a cross-site scripting (XSS) vulnerability in index.php through the dir parameter. The issue arises from insufficient input handling of dir, enabling remote attackers to inject arbitrary scripts/HTML that may be executed in a user’s browser. Impact is partial confidentialit...