Telartis Bv » Awstats Totals : Security Vulnerabilities, CVEs, CVSS score >= 4
CVE-2008-3922
Public exploit
awstatstotals.php in AWStats Totals 1.0 through 1.14 allows remote attackers to execute arbitrary code via PHP sequences in the sort parameter, which is used by the multisort function when dynamically creating an anonymous PHP function.
Max CVSS
9.3
EPSS Score
96.17%
Published
2008-09-04
Updated
2018-10-11
Multiple cross-site scripting (XSS) vulnerabilities in AWStats Totals 1.0 through 1.14 allow remote attackers to inject arbitrary web script or HTML via the (1) month and (2) year parameter.
Max CVSS
4.3
EPSS Score
0.27%
Published
2008-09-04
Updated
2018-10-11
2 vulnerabilities found