CVE-2012-5341

Publication date

2012-10-09 15:00:00

Family

mitre

State

PUBLISHED

Description

Multiple cross-site scripting (XSS) vulnerabilities in statistik.php in Otterware StatIt 4 allow remote attackers to inject arbitrary web script or HTML via the (1) action parameter, (2) show parameter in a stat_tld action, or (3) order parameter in a stat_abfragen action.