VULHUB ™

WebTrends Analysis Suite does not sufficiently sanitize HTML when logging requests. If malicious data containing HTML and script code is logged and then viewed using the software, exploitation will occur. Through exploitation of this issue, it will be possible to falsify log information and execute arbitrary script code in the web client of the user viewing the logs. Other WebTrends products may also be affected, though this has not been confirmed.

WebTrends Analysis Suite does not sufficiently sanitize HTML when logging requests. If malicious data containing HTML and script code is logged and then viewed using the software, exploitation will occur. Through exploitation of this issue, it will be possible to falsify log information and execute arbitrary script code in the web client of the user viewing the logs. Other WebTrends products may also be affected, though this has not been confirmed.