icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

FireStats < 1.6.2 SQL Injection Vulnerability

High

Synopsis

The remote web server is running a PHP application that is affected by multiple attack vectors.

Description

The remote web server is running FireStats, a PHP-based website statistics application. The installed version of FireStats is earlier than 1.6.2. Such versions are reportedly affected by a SQL-injection vulnerability through an unspecified vector.

Solution

Upgrade to FireStats 1.6.2 or later.