AVG-1356 log
Package | awstats |
Status | Vulnerable |
Severity | High |
Type | information disclosure |
Affected | 7.8-2 |
Fixed | Unknown |
Current | 7.8-2 [community] |
Ticket | FS#69301 |
Created | Sat Dec 12 17:31:36 2020 |
Issue | Severity | Remote | Type | Description |
---|---|---|---|---|
CVE-2020-35176 | High | Yes | Information disclosure | In AWStats through 7.8, cgi-bin/awstats.pl?config= accepts a partial absolute pathname (omitting the initial /etc), even though it was intended to only read... |