EUVD-2022-49200

Malicious code in bioql PyPI...

Fedora 37 : awstats (2023-b645c7feda)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-b645c7feda advisory. Security fix for CVE-2022-46391 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus h...

Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS : AWStats vulnerability (USN-5899-1)

The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS / 22.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-5899-1 advisory. It was discovered that AWStats did not properly sanitize the content of whois responses in the hostinfo plugin. An attacker...

Cross-site Scripting (XSS)

awstats is vulnerable to cross-site scripting. The vulnerability exists in the hostinfo plugin due to printing a response from Net::XWhois without proper validation checks...

Updated awstats packages fix security vulnerability

AWStats 7.x through 7.8 allows XSS in the hostinfo plugin due to printing a response from Net::XWhois without proper checks. CVE-2022-46391...

AWStats 7.x < 7.9 XSS Vulnerability

AWStats is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:awstats:awstats";...

ALPINE-CVE-2022-46391

AWStats 7.x through 7.8 allows XSS in the hostinfo plugin due to printing a response from Net::XWhois without proper checks...

CVE-2022-46391

AWStats 7.x through 7.8 allows XSS in the hostinfo plugin due to printing a response from Net::XWhois without proper checks...

CVE-2022-46391

AWStats 7.x through 7.8 allows XSS in the hostinfo plugin due to printing a response from Net::XWhois without proper checks...

Cross site scripting

AWStats 7.x through 7.8 allows XSS in the hostinfo plugin due to printing a response from Net::XWhois without proper checks...

UBUNTU-CVE-2022-46391

AWStats 7.x through 7.8 allows XSS in the hostinfo plugin due to printing a response from Net::XWhois without proper checks...

AWStats 跨站脚本漏洞

AWStats is eldy personal developer of a log analysis tool applied to Web sites. The software supports the analysis of IIS 5.0 +, Apache and other operating systems on the Web, WAP, proxy, streaming servers, FTP, mail server log files, displaying all Web statistics, including: visitors, pages,...

PT-2022-27848 · Awstats +4 · Awstats +4

Name of the Vulnerable Software and Affected Versions: AWStats versions 7.x through 7.8 Description: The issue allows for XSS in the hostinfo plugin due to printing a response from Net::XWhois without proper checks. Recommendations: For versions 7.x through 7.8, consider disabling the hostinfo...

CVE-2022-46391

AWStats 7.x through 7.8 allows XSS in the hostinfo plugin due to printing a response from Net::XWhois without proper checks...

CVE-2022-46391

AWStats 7.x through 7.8 allows XSS in the hostinfo plugin due to printing a response from Net::XWhois without proper checks...

CVE-2022-46391

AWStats 7.x through 7.8 allows XSS in the hostinfo plugin due to printing a response from Net::XWhois without proper checks...

CVE-2022-46391

AWStats 7.x through 7.8 allows XSS in the hostinfo plugin due to printing a response from Net::XWhois without proper checks...