Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2006-4454

Publish Date: 29 Aug 2006

Author: kefka

                							

                source: http://www.securityfocus.com/bid/19745/info

HLstats is prone to a cross-site scripting vulnerability because the application fails to sufficiently sanitize user-supplied data.

Exploiting this issue may help the attacker steal cookie-based authentication credentials and launch other attacks.

Version 1.34 is reportedly affected by this issue; other versions may also be affected.

http://www.example.com/hlstats.php?mode=search&amp;game=cstrike&amp;st=player&amp;q=%22%3CSCRIPT%3Ealert%28%22XSS%22%29%3B%3C%2FSCRIPT%3E%22

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

HLstats 1.34 - 'hlstats.php' Cross-Site Scripting

Vulmon Search

About

Products

Connect