CVEs-PoC/2011/CVE-2011-4751.md

### [CVE-2011-4751](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4751)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

SmarterTools SmarterStats 6.2.4100 generates web pages containing external links in response to GET requests with query strings for frmGettingStarted.aspx, which makes it easier for remote attackers to obtain sensitive information by reading (1) web-server access logs or (2) web-server Referer logs, related to a "cross-domain Referer leakage" issue.

### POC

#### Reference
- http://xss.cx/examples/exploits/stored-reflected-xss-cwe79-smarterstats624100.html

#### Github
No PoCs found on GitHub currently.