awstats

Link package | bugs open | bugs closed | Wiki | GitHub | web search
Description tool that generates web, streaming, ftp and mail server statistics, graphically
Version 7.8-2 [community]

Open

Group Affected Fixed Severity Status Ticket
AVG-1356 7.8-2 High Vulnerable FS#69301
Issue Group Severity Remote Type Description
CVE-2020-35176 AVG-1356 High Yes Information disclosure
In AWStats through 7.8, cgi-bin/awstats.pl?config= accepts a partial absolute pathname (omitting the initial /etc), even though it was intended to only read...