AVG-1356 log
| Package | awstats |
| Status | Fixed |
| Severity | High |
| Type | directory traversal |
| Affected | 7.8-2 |
| Fixed | 7.8-3 |
| Current | 7.9-1 [extra] |
| Ticket | FS#69301 |
| Created | Sat Dec 12 17:31:36 2020 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2020-35176 | High | Yes | Directory traversal | In AWStats through 7.8, cgi-bin/awstats.pl?config= accepts a partial absolute pathname (omitting the initial /etc), even though it was intended to only read... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 25 Mar 2021 | ASA-202103-15 | awstats | directory traversal |