VYPR
Unrated severityNVD Advisory· Published Jun 9, 2010· Updated Jun 16, 2026

CVE-2010-2260

CVE-2010-2260

Description

Multiple cross-site scripting (XSS) vulnerabilities in Gambit Design Bandwidth Meter, 0.72 and possibly 1.2, allow remote attackers to inject arbitrary web script or HTML via the PATH_INFO to (1) view_by_name.php or (2) view_by_ip.php in admin/. NOTE: some sources report that the affected product is ShaPlus Bandwidth Meter, but this is incorrect.

Affected products

3
  • cpe:2.3:a:gambitdesign:bandwidth_meter:0.72:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:gambitdesign:bandwidth_meter:0.72:*:*:*:*:*:*:*
    • cpe:2.3:a:gambitdesign:bandwidth_meter:1.2:*:*:*:*:*:*:*
    • (no CPE)range: <=1.2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.