awstats.pl in AWStats 4.0 and 6.2 allows remote malicious users to execute arbitrary commands via shell metacharacters in the config parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
awstats awstats 4.0 |
||
awstats awstats 6.2 |