FireStats < 1.6.2 SQL Injection Vulnerability
High Nessus Network Monitor Plugin ID 5090
SynopsisThe remote web server is running a PHP application that is affected by multiple attack vectors.
DescriptionThe remote web server is running FireStats, a PHP-based website statistics application. The installed version of FireStats is earlier than 1.6.2. Such versions are reportedly affected by a SQL-injection vulnerability through an unspecified vector.
SolutionUpgrade to FireStats 1.6.2 or later.