Vulnerabilities > CVE-2006-0317 - Cross-Site Scripting vulnerability in Redkernel Referrer Tracker 1.1.03

047910
CVSS 4.3 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
network
redkernel
exploit available

Summary

Cross-site scripting (XSS) vulnerability in rkrt_stats.php in RedKernel Referrer Tracker 1.1.0-3 allows remote attackers to inject arbitrary web script or HTML via a query string value as a GET, which is stored in the $QUERY_STRING variable. NOTE: the provenance of this information is unknown; portions of the details are obtained from third party information.

Vulnerable Configurations

Part Description Count
Application
Redkernel
1

Exploit-Db

descriptionRedKernel Referrer Tracker 1.1 .0-3 Rkrt_stats.PHP Cross-Site Scripting Vulnerability. CVE-2006-0317. Webapps exploit for php platform
idEDB-ID:27098
last seen2016-02-03
modified2006-01-16
published2006-01-16
reporterPreddy
sourcehttps://www.exploit-db.com/download/27098/
titleRedKernel Referrer Tracker 1.1.0-3 - Rkrt_stats.php Cross-Site Scripting Vulnerability