CVE-2005-0436

Опубликовано: 02 мая 2005

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Direct code injection vulnerability in awstats.pl in AWStats 6.3 and 6.4 allows remote attackers to execute portions of Perl code via the PluginMode parameter.

Ссылки

http://secunia.com/advisories/14299
Patch
Vendor Advisory
http://www.osvdb.org/13832
http://www.securityfocus.com/archive/1/390368
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/19336
http://secunia.com/advisories/14299
Patch
Vendor Advisory
http://www.osvdb.org/13832
http://www.securityfocus.com/archive/1/390368
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/19336

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:awstats:awstats:6.3:*:*:*:*:*:*:*

cpe:2.3:a:awstats:awstats:6.4:*:*:*:*:*:*:*

EPSS

Процентиль: 89%

0.04734

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2005-0436

ubuntu

почти 21 год назад

Direct code injection vulnerability in awstats.pl in AWStats 6.3 and 6.4 allows remote attackers to execute portions of Perl code via the PluginMode parameter.

CVE-2005-0436

debian

почти 21 год назад

Direct code injection vulnerability in awstats.pl in AWStats 6.3 and 6 ...

GHSA-95gq-qwv9-98cm

github

почти 4 года назад

Direct code injection vulnerability in awstats.pl in AWStats 6.3 and 6.4 allows remote attackers to execute portions of Perl code via the PluginMode parameter.

EPSS

Процентиль: 89%

0.04734

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other