CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2011-4752

SmarterTools SmarterStats 6.2.4100 sends incorrect Content-Type headers for certain resources, which might allow remote attackers to have an unspecified impact by leveraging an interpretation conflict involving frmCustomReport.aspx and certain other files. NOTE: it is possible that only clients, not the SmarterStats product, could be affected by this issue.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.018

EPSS Ranking 81.8%

CVSS Severity

CVSS v2 Score 10.0

References

http://xss.cx/examples/exploits/stored-reflected-xss-cwe79-smarterstats624100.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/72204
http://xss.cx/examples/exploits/stored-reflected-xss-cwe79-smarterstats624100.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/72204

Products affected by CVE-2011-4752

Smartertools » Smarterstats » Version: 6.2.4100

cpe:2.3:a:smartertools:smarterstats:6.2.4100

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2011-4752

Products

Pricing

Contact Us