Vulnerabilities > WEB Site Development > Etek Systems HIT Counter > 2.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2010-03-08 | CVE-2010-0941 | Cross-Site Scripting vulnerability in Web-Site-Development Etek Systems HIT Counter 2.0 Multiple cross-site scripting (XSS) vulnerabilities in eTek Systems Hit Counter 2.0 allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) index.php, (2) inc/login.php, (3) admin/index.php, and (4) admin/forgot.php. | 4.3 |