CVE-2006-6401

N/A Unknown

Published: December 10, 2006 Modified: April 23, 2026

Description

Multiple cross-site scripting (XSS) vulnerabilities in mystats.php in MyStats 1.0.8 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) connexion, (2) by, and (3) details parameter.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://marc.info/?l=bugtraq&m=116344068502988&w=2

Source: cve@mitre.org

Mailing List

http://secunia.com/advisories/22813

Source: cve@mitre.org

Vendor Advisory

http://securitytracker.com/id?1017210

Source: cve@mitre.org

Exploit Third Party Advisory VDB Entry

http://www.osvdb.org/30319

Source: cve@mitre.org

Broken Link

http://www.vupen.com/english/advisories/2006/4468

Source: cve@mitre.org

Not Applicable

http://marc.info/?l=bugtraq&m=116344068502988&w=2