Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Awstats
(Awstats)| Repositories | https://github.com/eldy/awstats |
| #Vulnerabilities | 25 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2020-12-07 | CVE-2020-29600 | In AWStats through 7.7, cgi-bin/awstats.pl?config= accepts an absolute pathname, even though it was intended to only read a file in the /etc/awstats/awstats.conf format. NOTE: this issue exists because of an incomplete fix for CVE-2017-1000501. | Awstats, Debian_linux, Fedora | 9.8 |