← Back

CVE-2005-0437

nvd nist
Published: May 2, 2005Modified: Apr 16, 2026

JSON object

Loading...
7.5
Vector
AV:N/AC:L/Au:N/C:P/I:P/A:P
Exploitability: 10.0 / Impact: 6.4
Source: NVD

Description

Directory traversal vulnerability in awstats.pl in AWStats 6.3 and 6.4 allows remote attackers to include arbitrary Perl modules via .. (dot dot) sequences in the loadplugin parameter.

Affected (2)

Products: Awstats: Awstats
Awstats
1 product
Awstats
Configuration A
2 vulnerable
Vulnerable SoftwareAffected Versions
Awstats
Awstats
Version 6.3
Awstats
Version 6.4

References (4)

Source: cve@mitre.org
ExploitPatchVendor Advisory
Source: cve@mitre.org
ExploitVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitPatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitVendor Advisory

Timeline

No history available yet.