4 matches found
HLstats 1.35 Cross Site Scripting
------------------------------------------- HLstats 1.35 XSS Exploit Contact: vhr95zw at hotmail dot com Website: http://greyhathackers.wordpress.com/ Description: HLstats 1.35 is vulnerable to XSS in stats.php. PoC:...
RedLevel Advisory #020 - HLstats v1.35 Cross-Site Scripting Vulnerability #3
!-- HLstats v1.35 - Cross-Site Scripting Vulnerability 3 Vulnerable Variables: authusername, authpassword Vulnerable File: hlstats.php Vulnerable: HLstats 1.2 other versions may also be vulnerable Google d0rk: "generated in real-time by HLstats" John Martinelli [email protected] RedLevel Securi...
Cross site scripting
Cross-site scripting XSS vulnerability in hlstats.php in HLstats 1.35, and possibly earlier, allows remote attackers to inject arbitrary web script or HTML via 1 the PATHINFO or 2 the action parameter...
CVE-2007-2812
CVE-2007-2812 affects HLstats HLstats 1.35 (and possibly earlier) with a cross-site scripting (XSS) flaw in hlstats.php that allows an attacker to inject arbitrary scripts via PATH_INFO or the action parameter. The connected documents confirm the vulnerability vectors but do not provide patch det...