Description
Multiple cross-site scripting (XSS) vulnerabilities in index.php in AudiStat 1.3 allow remote attackers to inject arbitrary web script or HTML via the (1) year and (2) mday parameters. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Exploits (1)
References (1)
Core 1
Core References
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/38494
Scores
EPSS
0.0031
EPSS Percentile
54.4%
Details
CWE
CWE-79
Status
published
Products (1)
alexandre_dubus/audistat
1.3
Published
Mar 23, 2010
Tracked Since
Feb 18, 2026