Vulnerabilities > CVE-2002-2044 - Cross-Site Scripting vulnerability in X-Stat 2.2/2.3
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE network
xqus
Summary
Cross-site scripting (XSS) vulnerability in x_stat_admin.php in x-stat 2.3 and earlier allows remote attackers to inject arbitrary web script or HTML via a parameter to the phpinfo action.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |