4 matches found
FreeBSD Ports: hlstats
The remote host is missing an update to the system as announced in the referenced advisory. VID 09639ccc-3abb-11db-81e1-000e0c2e438a OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in hlstats.php in HLstats 1.35, and possibly earlier, allow remote attackers to inject arbitrary web script or HTML via the 1 authusername or 2 authpassword parameter, different vectors than CVE-2007-0840 and CVE-2007-2812...
CVE-2007-2812
CVE-2007-2812 affects HLstats HLstats 1.35 (and possibly earlier) with a cross-site scripting (XSS) flaw in hlstats.php that allows an attacker to inject arbitrary scripts via PATH_INFO or the action parameter. The connected documents confirm the vulnerability vectors but do not provide patch det...
CVE-2007-2812
Cross-site scripting XSS vulnerability in hlstats.php in HLstats 1.35, and possibly earlier, allows remote attackers to inject arbitrary web script or HTML via 1 the PATHINFO or 2 the action parameter...