Smarterstats@6.2.4100 Security Vulnerabilities and Issues — Smarterstats@6.2.4100 CVE List

Lucene search

SmartertoolsSmarterstats6.2.4100

3 matches found

CVE•added 2011/12/16 11:55 a.m.•37 views

CVE-2011-4752

SmarterTools SmarterStats 6.2.4100 sends incorrect Content-Type headers for certain resources, which might allow remote attackers to have an unspecified impact by leveraging an interpretation conflict involving frmCustomReport.aspx and certain other files. NOTE: it is possible that only clients, no...

10CVSS6.9AI score0.01751EPSS

CVE•added 2011/12/16 11:55 a.m.•33 views

CVE-2011-4750

Multiple cross-site scripting (XSS) vulnerabilities in SmarterTools SmarterStats 6.2.4100 allow remote attackers to inject arbitrary web script or HTML via crafted input to a PHP script, as demonstrated by Default.aspx and certain other files.

4.3CVSS5.9AI score0.00225EPSS

CVE•added 2011/12/16 11:55 a.m.•31 views

CVE-2011-4751

SmarterTools SmarterStats 6.2.4100 generates web pages containing external links in response to GET requests with query strings for frmGettingStarted.aspx, which makes it easier for remote attackers to obtain sensitive information by reading (1) web-server access logs or (2) web-server Referer logs...

5CVSS6.3AI score0.0023EPSS