Filtered by vendor Awstats Subscriptions
Total 25 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2005-0436 1 Awstats 1 Awstats 2024-11-20 N/A
Direct code injection vulnerability in awstats.pl in AWStats 6.3 and 6.4 allows remote attackers to execute portions of Perl code via the PluginMode parameter.
CVE-2005-0435 1 Awstats 1 Awstats 2024-11-20 N/A
awstats.pl in AWStats 6.3 and 6.4 allows remote attackers to read server web logs by setting the loadplugin and pluginmode parameters to rawlog.
CVE-2005-0363 1 Awstats 1 Awstats 2024-11-20 N/A
awstats.pl in AWStats 4.0 and 6.2 allows remote attackers to execute arbitrary commands via shell metacharacters in the config parameter.
CVE-2005-0362 1 Awstats 1 Awstats 2024-11-20 N/A
awstats.pl in AWStats 6.2 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) "pluginmode", (2) "loadplugin", or (3) "noloadplugin" parameters.
CVE-2005-0116 1 Awstats 1 Awstats 2024-11-20 N/A
AWStats 6.1, and other versions before 6.3, allows remote attackers to execute arbitrary commands via shell metacharacters in the configdir parameter to aswtats.pl.