FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

hlstats -- multiple cross site scripting vulnerabilities

Affected packages
hlstats <= 1.35

Details

VuXML ID 09639ccc-3abb-11db-81e1-000e0c2e438a
Discovery 2006-08-29
Entry 2006-09-02
Modified 2011-09-03

Kefka reports multiple cross site scripting vulnerabilities within hlstats. The vulnerabilities are caused due to improper checking of variables, allowing an attacker to perform cross site scripting.

References

Bugtraq ID 19745
CVE Name CVE-2006-4454
CVE Name CVE-2006-6780
CVE Name CVE-2006-6781
CVE Name CVE-2007-2812