Multiple cross-site scripting (XSS) vulnerabilities in statistik.php in Otterware StatIt 4 allow remote malicious users to inject arbitrary web script or HTML via the (1) action parameter, (2) show parameter in a stat_tld action, or (3) order parameter in a stat_abfragen action.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
otterware statit 4.0 |