awstats
| Link | package | bugs open | bugs closed | Wiki | GitHub | web search |
| Description | tool that generates web, streaming, ftp and mail server statistics, graphically |
| Version | 7.9-1 [extra] |
Resolved
| Group | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|
| AVG-1356 | 7.8-2 | 7.8-3 | High | Fixed | FS#69301 |
| Issue | Group | Severity | Remote | Type | Description |
|---|---|---|---|---|---|
| CVE-2020-35176 | AVG-1356 | High | Yes | Directory traversal | In AWStats through 7.8, cgi-bin/awstats.pl?config= accepts a partial absolute pathname (omitting the initial /etc), even though it was intended to only read... |
Advisories
| Date | Advisory | Group | Severity | Type |
|---|---|---|---|---|
| 25 Mar 2021 | ASA-202103-15 | AVG-1356 | High | directory traversal |