Max CVSS 5.1 Min CVSS 4.0 Total Count2
IDCVSSSummaryLast (major) updatePublished
CVE-2006-2644 4.0
AWStats 6.5, and possibly other versions, allows remote authenticated users to execute arbitrary code by using the configdir parameter to awstats.pl to upload a configuration file whose name contains shell metacharacters, then access that file using
03-10-2018 - 21:41 30-05-2006 - 10:02
CVE-2006-2237 5.1
The web interface for AWStats 6.4 and 6.5, when statistics updates are enabled, allows remote attackers to execute arbitrary code via shell metacharacters in the migrate parameter.
03-10-2018 - 21:40 08-05-2006 - 23:02
Back to Top Mark selected
Back to Top