exploitDog

GHSA-7rg7-c2wp-3xxr

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Eval injection vulnerability in awstats.pl in AWStats 6.4 and earlier, when a URLPlugin is enabled, allows remote attackers to execute arbitrary Perl code via the HTTP Referrer, which is used in a $url parameter that is inserted into an eval function call.

Eval injection vulnerability in awstats.pl in AWStats 6.4 and earlier, when a URLPlugin is enabled, allows remote attackers to execute arbitrary Perl code via the HTTP Referrer, which is used in a $url parameter that is inserted into an eval function call.

Ссылки

EPSS

Процентиль: 79%

0.0133

Низкий

CVE ID

Дефекты

CWE-94

Связанные уязвимости

CVE-2005-1527

ubuntu

около 20 лет назад

Eval injection vulnerability in awstats.pl in AWStats 6.4 and earlier, when a URLPlugin is enabled, allows remote attackers to execute arbitrary Perl code via the HTTP Referrer, which is used in a $url parameter that is inserted into an eval function call.

CVE-2005-1527

nvd

около 20 лет назад

Eval injection vulnerability in awstats.pl in AWStats 6.4 and earlier, when a URLPlugin is enabled, allows remote attackers to execute arbitrary Perl code via the HTTP Referrer, which is used in a $url parameter that is inserted into an eval function call.

CVE-2005-1527

debian

около 20 лет назад

Eval injection vulnerability in awstats.pl in AWStats 6.4 and earlier, ...

EPSS

Процентиль: 79%

0.0133

Низкий

CVE ID

Дефекты

CWE-94