Thursday 20 December 2012

[EN] Google Analyticator 6.4.1 XSSed

Google Analyticator 6.4.1 is vulnerable to cross-site scripting.


'Download extensions to track' is vulnerable to XSS.

Also ga_adsense, ga_extra, ga_extra_after and ga_outbound_prefix parameters are also vulnerable to XSS.


No comments:

Post a Comment

What do You think...?