Описание
AWStats 6.1, and other versions before 6.3, allows remote attackers to execute arbitrary commands via shell metacharacters in the configdir parameter to aswtats.pl.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
- ExploitPatchVendor Advisory
- PatchThird Party AdvisoryUS Government Resource
- PatchVendor Advisory
- PatchVendor Advisory
- ExploitPatchVendor Advisory
- PatchThird Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1Версия до 6.3 (включая)
cpe:2.3:a:awstats:awstats:*:*:*:*:*:*:*:*
EPSS
Процентиль: 100%
0.91763
Критический
7.5 High
CVSS2
Дефекты
CWE-20
Связанные уязвимости
ubuntu
около 21 года назад
AWStats 6.1, and other versions before 6.3, allows remote attackers to execute arbitrary commands via shell metacharacters in the configdir parameter to aswtats.pl.
debian
около 21 года назад
AWStats 6.1, and other versions before 6.3, allows remote attackers to ...
github
почти 4 года назад
AWStats 6.1, and other versions before 6.3, allows remote attackers to execute arbitrary commands via shell metacharacters in the configdir parameter to aswtats.pl.
EPSS
Процентиль: 100%
0.91763
Критический
7.5 High
CVSS2
Дефекты
CWE-20