Information Disclosure Vulnerability in SmarterTools SmarterStats 6.0 Web Server

Information Disclosure Vulnerability in SmarterTools SmarterStats 6.0 Web Server

CVE-2011-2157 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The (1) Admin/frmEmailReportSettings.aspx and (2) Admin/frmGeneralSettings.aspx components in the SmarterTools SmarterStats 6.0 web server generate web pages containing e-mail addresses, which allows remote attackers to obtain potentially sensitive information by reading the default values of form fields.

Learn more about our Web App Pen Testing.