Unrated severityNVD Advisory· Published Dec 16, 2011· Updated Apr 29, 2026

CVE-2011-4751

Description

SmarterTools SmarterStats 6.2.4100 generates web pages containing external links in response to GET requests with query strings for frmGettingStarted.aspx, which makes it easier for remote attackers to obtain sensitive information by reading (1) web-server access logs or (2) web-server Referer logs, related to a "cross-domain Referer leakage" issue.

Affected products

Smartertools/Smarterstats
cpe:2.3:a:smartertools:smarterstats:6.2.4100:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

xss.cx/examples/exploits/stored-reflected-xss-cwe79-smarterstats624100.htmlnvd
exchange.xforce.ibmcloud.com/vulnerabilities/72203nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000