Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 24/05/2007 Updated: 16/10/2018

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 828

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Multiple cross-site scripting (XSS) vulnerabilities in hlstats.php in HLstats 1.35, and possibly earlier, allow remote malicious users to inject arbitrary web script or HTML via the (1) authusername or (2) authpassword parameter, different vectors than CVE-2007-0840 and CVE-2007-2812.

Vulnerable Product	Search on Vulmon	Subscribe to Product
hlstats hlstats

NVD-CWE-Other http://www.securityfocus.com/bid/24102 http://osvdb.org/36215 https://exchange.xforce.ibmcloud.com/vulnerabilities/34450 http://www.securityfocus.com/archive/1/469291/100/0/threaded https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-2847

Vulnerability Summary

References

Vulmon Search

About

Products

Connect