CVE-2006-7125

Currently unrated

Key Information:

Vendor: Joomla
Status: Bsq Sitestats
Vendor: CVE Published:; 6 March 2007

Summary

Cross-site scripting (XSS) vulnerability in Joomla BSQ Sitestats 1.8.0 and 2.2.1 allows remote attackers to inject arbitrary web script or HTML via the HTTP Referer header, which is not properly handled when the administrator views site statistics.

References

http://www.vupen.com/english/advisories/2006/4090

vdb-entryx_refsource_VUPEN

http://www.securityfocus.com/bid/20614

vdb-entryx_refsource_BID

http://www.securityfocus.com/archive/1/449125/100/0/threaded

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability published
Mar 6, 2007
Vulnerability Reserved
Mar 5, 2007

Collectors

NVD DatabaseMitre Database