exploitDog

GHSA-p75r-4c9j-53m6

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

awstats.cgi in AWStats before 7.0 accepts a configdir parameter in the URL, which allows remote attackers to execute arbitrary commands via a crafted configuration file located on a (1) WebDAV server or (2) NFS server.

awstats.cgi in AWStats before 7.0 accepts a configdir parameter in the URL, which allows remote attackers to execute arbitrary commands via a crafted configuration file located on a (1) WebDAV server or (2) NFS server.

Ссылки

EPSS

Процентиль: 91%

0.07265

Низкий

CVE ID

Дефекты

CWE-94

Связанные уязвимости

CVE-2010-4367

ubuntu

около 15 лет назад

awstats.cgi in AWStats before 7.0 accepts a configdir parameter in the URL, which allows remote attackers to execute arbitrary commands via a crafted configuration file located on a (1) WebDAV server or (2) NFS server.

CVE-2010-4367

nvd

около 15 лет назад

awstats.cgi in AWStats before 7.0 accepts a configdir parameter in the URL, which allows remote attackers to execute arbitrary commands via a crafted configuration file located on a (1) WebDAV server or (2) NFS server.

CVE-2010-4367

debian

около 15 лет назад

awstats.cgi in AWStats before 7.0 accepts a configdir parameter in the ...

EPSS

Процентиль: 91%

0.07265

Низкий

CVE ID

Дефекты

CWE-94