Lucene search
Veracode Vulnerability DatabaseVERACODE:25284HistoryMay 10, 2020 - 11:23 p.m.
Remote Code Execution
2020-05-1023:23:54
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
EPSS
0.083
Percentile
94.4%
awstats is vulnerable to arbitrary code execution. The vulnerability exists as a path traversal flaw in the handling of the “config” and “migrate” parameters resulting in unauthenticated remote code execution.
Related
debian
debian
[SECURITY] [DSA 4092-1] awstats security update
2018-01-19 09:13:06
[SECURITY] [DSA 4092-1] awstats security update
2018-01-19 09:13:06
[SECURITY] [DLA 1238-1] awstats security update
2018-01-10 05:59:58
openvas
openvas
Ubuntu: Security Advisory (USN-3518-1)
2018-01-09 00:00:00
Debian: Security Advisory (DLA-1238-1)
2018-01-11 00:00:00
Fedora Update for awstats FEDORA-2018-17ba1a2393
2018-01-17 00:00:00
freebsd
freebsd
awstats -- remote code execution
2018-01-03 00:00:00
www/awstats -- Partial absolute pathname
2022-12-11 00:00:00
nvd
nvd
CVE-2017-1000501
2018-01-03 15:29:00
CVE-2020-29600
2020-12-07 20:15:12
CVE-2020-35176
2020-12-12 00:15:12
nessus
nessus
GLSA-202007-37 : AWStats: Multiple vulnerabilities
2020-07-27 00:00:00
Debian DLA-1238-1 : awstats security update
2018-01-10 00:00:00
Debian DSA-4092-1 : awstats - security update
2018-01-22 00:00:00
fedora
fedora
[SECURITY] Fedora 27 Update: awstats-7.6-8.fc27
2018-01-12 01:53:19
[SECURITY] Fedora 26 Update: awstats-7.6-4.fc26
2018-01-16 16:57:11
ubuntu
ubuntu
AWStats vulnerability
2018-01-08 00:00:00
AWStats vulnerabilities
2021-05-13 00:00:00
mageia
mageia
Updated awstats packages fix security vulnerability
2018-01-03 17:22:14
ubuntucve
ubuntucve
CVE-2017-1000501
2018-01-03 00:00:00
CVE-2020-35176
2020-12-12 00:00:00
CVE-2020-29600
2020-12-07 00:00:00
osv
osv
awstats - security update
2018-01-10 00:00:00
awstats - security update
2018-01-19 00:00:00
CVE-2017-1000501
2018-01-03 15:29:00
prion
prion
cvelist
cvelist
CVE-2017-1000501
2018-01-03 15:00:00
CVE-2020-29600
2020-12-07 19:52:14
CVE-2020-35176
2020-12-11 23:16:22
cve
cve
CVE-2017-1000501
2018-01-03 15:29:00
CVE-2020-29600
2020-12-07 20:15:12
CVE-2020-35176
2020-12-12 00:15:12
debiancve
debiancve
CVE-2017-1000501
2018-01-03 15:29:00
CVE-2020-29600
2020-12-07 20:15:12
CVE-2020-35176
2020-12-12 00:15:12
gentoo
gentoo
AWStats: Multiple vulnerabilities
2020-07-27 00:00:00
alpinelinux
alpinelinux
CVE-2017-1000501
2018-01-03 15:29:00
CVE-2020-29600
2020-12-07 20:15:12
CVE-2020-35176
2020-12-12 00:15:12
redhatcve
redhatcve
CVE-2020-29600
2022-05-20 23:23:57
CVE-2020-35176
2022-05-20 23:27:46
veracode
veracode
Arbitrary File Read
2020-12-23 21:54:26
archlinux
archlinux
[ASA-202103-15] awstats: directory traversal
2021-03-25 00:00:00