AVG-1356 log

Package awstats
Status Fixed
Severity High
Type directory traversal
Affected 7.8-2
Fixed 7.8-3
Current 7.8-3 [community]
Ticket FS#69301
Created Sat Dec 12 17:31:36 2020
Issue Severity Remote Type Description
CVE-2020-35176 High Yes Directory traversal
In AWStats through 7.8, cgi-bin/awstats.pl?config= accepts a partial absolute pathname (omitting the initial /etc), even though it was intended to only read...
Date Advisory Package Type
25 Mar 2021 ASA-202103-15 awstats directory traversal