CVE-2011-2157

Severity CVSS v4.0:
Pending analysis
Type:
CWE-264 Permissions, Privileges, and Access Control
Publication date:
20/05/2011
Last modified:
11/04/2025

Description

The (1) Admin/frmEmailReportSettings.aspx and (2) Admin/frmGeneralSettings.aspx components in the SmarterTools SmarterStats 6.0 web server generate web pages containing e-mail addresses, which allows remote attackers to obtain potentially sensitive information by reading the default values of form fields.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:smartertools:smarterstats:6.0:*:*:*:*:*:*:*