Cross-site scripting (XSS) vulnerability in phpstats.php in Michael Wagner phpstats 0.1 alpha allows remote attackers to inject arbitrary web script or HTML via the baseDir parameter.
来源:NVD
Michael Wagner phpstats 0.1 alpha中的phpstats.php存在跨站脚本攻击漏洞,远程攻击者借助baseDir参数,注入任意的web脚本或HTML。