Описание
Cross-site scripting (XSS) vulnerability in awstats.pl in AWStats 6.8 allows remote attackers to inject arbitrary web script or HTML via the query_string, a different vulnerability than CVE-2006-3681 and CVE-2006-1945.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 6.5-1ubuntu1.3 |
| devel | not-affected | 6.7.dfsg-5.1 |
| feisty | ignored | end of life, was needs-triage |
| gutsy | released | 6.6+dfsg-1ubuntu0.1 |
| hardy | released | 6.7.dfsg-1ubuntu0.1 |
| intrepid | released | 6.7.dfsg-5ubuntu0.1 |
| upstream | pending | 6.7.dfsg-6 |
Показывать по
EPSS
4.3 Medium
CVSS2
Связанные уязвимости
Cross-site scripting (XSS) vulnerability in awstats.pl in AWStats 6.8 allows remote attackers to inject arbitrary web script or HTML via the query_string, a different vulnerability than CVE-2006-3681 and CVE-2006-1945.
Cross-site scripting (XSS) vulnerability in awstats.pl in AWStats 6.8 allows remote attackers to inject arbitrary web script or HTML via the query_string, a different vulnerability than CVE-2006-3681 and CVE-2006-1945.
Cross-site scripting (XSS) vulnerability in awstats.pl in AWStats 6.8 ...
Cross-site scripting (XSS) vulnerability in awstats.pl in AWStats 6.8 allows remote attackers to inject arbitrary web script or HTML via the query_string, a different vulnerability than CVE-2006-3681 and CVE-2006-1945.
EPSS
4.3 Medium
CVSS2