17 matches found
EUVD-2008-5059
Malware in sbrugna...
Fedora Core 10 FEDORA-2009-12444 (awstats)
The remote host is missing an update to awstats announced via advisory FEDORA-2009-12444. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by t...
Mandrake Security Advisory MDVSA-2009:266 (awstats)
The remote host is missing an update to awstats announced via advisory MDVSA-2009:266. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...
Fedora 10 : awstats-6.8-3.fc10 (2008-10950)
Use Debian's patch for CVE-2008-3714 rh474396 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
Fedora Update for awstats FEDORA-2008-7663
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for awstats FEDORA-2008-10962
Check for the Version of awstats OpenVAS Vulnerability Test Fedora Update for awstats FEDORA-2008-10962 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
Fedora Update for awstats FEDORA-2008-10962
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for awstats FEDORA-2008-10938
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Fedora Update for awstats FEDORA-2008-10950
The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
FreeBSD Ports: awstats
The remote host is missing an update to the system as announced in the referenced advisory. VID 27d78386-d35f-11dd-b800-001b77d09812 OpenVAS Vulnerability Test $ Description: Auto generated from VID 27d78386-d35f-11dd-b800-001b77d09812 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...
Fedora 9 : awstats-6.8-3.fc9 (2008-10962)
Use Debian's patch for CVE-2008-3714 rh474396 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
AWStats awstats.pl跨站脚本漏洞
BUGTRAQ ID: 30730 CVECAN ID: CVE-2008-3714 AWStats是一款流行的基于Web的网站流量分析软件。 AWStats的awstats.pl脚本没有正确地过滤config请求参数,如果用户跟随了恶意链接的话就可能导致在浏览器会话中注入并执行任意web脚本或HTML代码。 AWStats 6.8 Debian ------ Debian已经为此发布了一个安全公告(DSA-1679-1)以及相应补丁: DSA-1679-1:New awstats packages fix cross-site scripting...
[SECURITY] [DSA 1679-1] New awstats packages fix cross-site scripting
------------------------------------------------------------------------ Debian Security Advisory DSA-1679-1 [email protected] http://www.debian.org/security/ Florian Weimer December 03, 2008 http://www.debian.org/security/faq -...
CVE-2008-3714
Cross-site scripting XSS vulnerability in awstats.pl in AWStats 6.8 allows remote attackers to inject arbitrary web script or HTML via the querystring, a different vulnerability than CVE-2006-3681 and CVE-2006-1945...
CVE-2008-3714
Cross-site scripting XSS vulnerability in awstats.pl in AWStats 6.8 allows remote attackers to inject arbitrary web script or HTML via the querystring, a different vulnerability than CVE-2006-3681 and CVE-2006-1945...
CVE-2008-3714
CVE-2008-3714 affects AWStats, specifically the CGI script awstats.pl in version 6.8, where user-controlled input in the query_string is not properly sanitized, enabling a cross-site scripting (XSS) vulnerability. The initial description explicitly states an XSS issue via the query_string, distin...
CVE-2008-3714
Cross-site scripting XSS vulnerability in awstats.pl in AWStats 6.8 allows remote attackers to inject arbitrary web script or HTML via the querystring, a different vulnerability than CVE-2006-3681 and CVE-2006-1945...