Lucene search
K

659 matches found

OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.5 views

FreeBSD Ports: awstats

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

7.4AI score
Exploits0References4
OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.20 views

FreeBSD Ports: awstats

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

7.5CVSS6.6AI score0.07365EPSS
Exploits3References7
OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.19 views

FreeBSD Ports: awstats

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

7.5CVSS6.6AI score0.74941EPSS
Exploits11References5
OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.17 views

FreeBSD Ports: awstats

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

5CVSS6.6AI score0.02665EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.34 views

FreeBSD Ports: awstats

The remote host is missing an update to the system as announced in the referenced advisory. VID 0f5a2b4d-694b-11d9-a9e7-0001020eed82 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

7.5CVSS0.2AI score0.74941EPSS
Exploits11
OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.8 views

FreeBSD Ports: awstats

The remote host is missing an update to the system as announced in the referenced advisory. VID 2df297a2-dc74-11da-a22b-000c6ec775d9 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

Exploits0
OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.25 views

FreeBSD Ports: awstats

The remote host is missing an update to the system as announced in the referenced advisory. VID e86fbb5f-0d04-11da-bc08-0001020eed82 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

5CVSS6.3AI score0.02665EPSS
Exploits0
OpenVAS
OpenVAS
added 2008/09/04 12:0 a.m.39 views

FreeBSD Ports: awstats

The remote host is missing an update to the system as announced in the referenced advisory. VID fdad8a87-7f94-11d9-a9e7-0001020eed82 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

7.5CVSS0.3AI score0.07365EPSS
Exploits3
Packet Storm
Packet Storm
added 2008/09/04 12:0 a.m.34 views

awstats-exec.txt

\n"; arrayshift$argv; $host = $argv0; Start the interactive shell while1 fwriteSTDOUT, "shell: "...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2008/08/27 12:0 a.m.35378 views

AWStats Totals awstatstotals.php multisort() Function sort Parameter Arbitrary PHP Code Execution

The remote web server is running a version of awstatstotals.php which does not properly sanitize its 'sort' argument. An attacker can run arbitrary commands on the remote host within the context of the web server. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

9.3CVSS8.5AI score0.53202EPSS
Exploits5References3
Packet Storm
Packet Storm
added 2008/08/27 12:0 a.m.22 views

EMORY-2008-01.txt

Emory University UTS Security Advisory EMORY-2008-01 Topic: Multiple Vulnerabilities in AWStats Totals Original release date: August 26, 2008 SUMMARY ======= Telartis's AWStats Totals program is vulnerable to command execution and cross site scripting attacks. A remote attacker could exploit thes...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2008/08/27 12:0 a.m.35 views

AWStats Totals 'sort'参数远程命令执行漏洞

BUGTRAQ ID:30856 CNCAN ID:CNCAN-2008082701 Telartis's AWStats Totals是一款基于PHP的脚本程序。 Telartis's AWStats Totals不正确处理URL参数,远程攻击者可以利用漏洞以应用程序权限执行任意代码。 问题是脚本对提交给'sort'参数的数据缺少过滤,提交特殊的字符可插入PHP表达式,以WEB权限执行。 Telartis AWStats Totals 1.14 升级到AWStats Totals 1.15: http://www.telartis.nl/xcms/awstats/...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2008/08/26 12:0 a.m.87 views

Multiple Vulnerabilities in AWStats Totals

Emory University UTS Security Advisory EMORY-2008-01 Topic: Multiple Vulnerabilities in AWStats Totals Original release date: August 26, 2008 SUMMARY ======= Telartis's AWStats Totals program is vulnerable to command execution and cross site scripting attacks. A remote attacker could exploit thes...

1.2AI score
Exploits0
OSV
OSV
added 2008/08/19 7:41 p.m.2 views

DEBIAN-CVE-2008-3714

Cross-site scripting XSS vulnerability in awstats.pl in AWStats 6.8 allows remote attackers to inject arbitrary web script or HTML via the querystring, a different vulnerability than CVE-2006-3681 and CVE-2006-1945...

4.3CVSS5.8AI score0.05597EPSS
Exploits1References1
NVD
NVD
added 2008/08/19 7:41 p.m.15 views

CVE-2008-3714

Cross-site scripting XSS vulnerability in awstats.pl in AWStats 6.8 allows remote attackers to inject arbitrary web script or HTML via the querystring, a different vulnerability than CVE-2006-3681 and CVE-2006-1945...

4.3CVSS5.4AI score0.05597EPSS
Exploits1References16
OSV
OSV
added 2008/08/19 7:41 p.m.7 views

CVE-2008-3714

Cross-site scripting XSS vulnerability in awstats.pl in AWStats 6.8 allows remote attackers to inject arbitrary web script or HTML via the querystring, a different vulnerability than CVE-2006-3681 and CVE-2006-1945...

5.4AI score
Exploits0References16
Prion
Prion
added 2008/08/19 7:41 p.m.15 views

Cross site scripting

Cross-site scripting XSS vulnerability in awstats.pl in AWStats 6.8 allows remote attackers to inject arbitrary web script or HTML via the querystring, a different vulnerability than CVE-2006-3681 and CVE-2006-1945...

4.3CVSS5.6AI score0.05597EPSS
Exploits2References16Affected Software1
UbuntuCve
UbuntuCve
added 2008/08/19 7:41 p.m.26 views

CVE-2008-3714

Cross-site scripting XSS vulnerability in awstats.pl in AWStats 6.8 allows remote attackers to inject arbitrary web script or HTML via the querystring, a different vulnerability than CVE-2006-3681 and CVE-2006-1945...

4.3CVSS6AI score0.05597EPSS
Exploits1References2
Cvelist
Cvelist
added 2008/08/19 7:10 p.m.37 views

CVE-2008-3714

Cross-site scripting XSS vulnerability in awstats.pl in AWStats 6.8 allows remote attackers to inject arbitrary web script or HTML via the querystring, a different vulnerability than CVE-2006-3681 and CVE-2006-1945...

5.3AI score0.05597EPSS
Exploits1References16
CVE
CVE
added 2008/08/19 7:10 p.m.105 views

CVE-2008-3714

CVE-2008-3714 affects AWStats, specifically the CGI script awstats.pl in version 6.8, where user-controlled input in the query_string is not properly sanitized, enabling a cross-site scripting (XSS) vulnerability. The initial description explicitly states an XSS issue via the query_string, distin...

4.3CVSS5.3AI score0.05597EPSS
Exploits1References16Affected Software1
Rows per page
Query Builder