Php-Stats 'admin.php' Multiple Cross-Site Scripting Vulnerabilities

Php-Stats 'admin.php' Multiple Cross-Site Scripting Vulnerabilities

Attackers can exploit these issues by enticing an unsuspecting user to follow a malicious URI.

The following example URIs are available:

http://www.example.com/stats/admin.php?action=systems&mode=0&sel_anno=2008&sel_mese=[XSS]
http://www.example.com/stats/admin.php?action=systems&mode=0&sel_anno=[XSS]