2 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in awstats.pl in AWStats 6.5 and earlier allows remote attackers to inject arbitrary web script or HTML via the config parameter. NOTE: this might be the same core issue as CVE-2005-2732...
CVE-2005-2732
AWStats is the affected software in related entries. Connected documents describe an XSS issue in awstats.pl affecting AWStats 6.5 and earlier, exploitable via the config parameter, and note it may be the same core issue as CVE-2005-2732. No explicit versioned remediation or fixes are provided in...