MyStats <=1.0.8 [injection sql, multiples xss, array & full path disclosure]

MyStats =1.0.8 injection sql, multiples xss, array & full path disclosure vendor site: http://emcity.nexenservices.com/mystats/index.php product :MyStats 1.0.8 bug: injection sql, multiples xss, array & full path disclosure risk : medium 1/3 Connexion Variable XSS Exploits:...