Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

FireStats < 1.6.2 SQL Injection Vulnerability

High

Synopsis

The remote web server is running a PHP application that is affected by multiple attack vectors.

Description

The remote web server is running FireStats, a PHP-based website statistics application. The installed version of FireStats is earlier than 1.6.2. Such versions are reportedly affected by a SQL-injection vulnerability through an unspecified vector.

Solution

Upgrade to FireStats 1.6.2 or later.