AVG-1356 log

Package awstats
Status Vulnerable
Severity High
Type information disclosure
Affected 7.8-2
Fixed Unknown
Current 7.8-2 [community]
Ticket FS#69301
Created Sat Dec 12 17:31:36 2020
Issue Severity Remote Type Description
CVE-2020-35176 High Yes Information disclosure
In AWStats through 7.8, cgi-bin/awstats.pl?config= accepts a partial absolute pathname (omitting the initial /etc), even though it was intended to only read...