CVE-2010-4368 | awstats up to 6.95 Configuration File awstats.cgi configdir code injection (VU#870532 / ID 100925)

8月 2, 2024
3:58 am

A vulnerability was found in awstats. It has been classified as critical. This affects an unknown part of the file awstats.cgi of the component Configuration File. The manipulation of the argument configdir leads to code injection.

This vulnerability is uniquely identified as CVE-2010-4368. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2010-4368 | awstats up to 6.95 Configuration File awstats.cgi configdir code injection (VU#870532 / ID 100925)

Elvescore.io

Recent Posts

CVE-2023-7300 – Huawei Home Music System Path Traversal Vulnerability

CVE-2024-12943 – “CodeAstro House Rental Management System SQL Injection Vulnerability”

CVE-2024-12944 – CodeAstro House Rental Management System SQL Injection

CVE-2024-56433 – “Shadow Utilities Default Subuid Conflict Vulnerability”

CVE-2024-12941 – CodeAstro Blood Donor Management System SQL Injection Vulnerability

CVE-2024-12942 – 1000 Projects Portfolio Management System MCA SQL Injection Vulnerability

CVE-2010-4368 | awstats up to 6.95 Configuration File awstats.cgi configdir code injection (VU#870532 / ID 100925)

CVE-2010-4368 | awstats up to 6.95 Configuration File awstats.cgi configdir code injection (VU#870532 / ID 100925)