CVE-2008-3922

EXPLOITED

AWStats Totals <1.14 - RCE

Title source: llm

Description

awstatstotals.php in AWStats Totals 1.0 through 1.14 allows remote attackers to execute arbitrary code via PHP sequences in the sort parameter, which is used by the multisort function when dynamically creating an anonymous PHP function.

Exploits (3)

exploitdb WORKING POC VERIFIED

by Metasploit · rubywebappsphp

https://www.exploit-db.com/exploits/17324

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Ricardo Almeida · phpwebappsphp

https://www.exploit-db.com/exploits/6368

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

by aushack · rubypocunix

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/awstatstotals_multisort.rb

View Code ZIP pw:eip

References (11)

[Vendor Advisory] http://secunia.com/advisories/31630

[Third Party Advisory] http://securityreason.com/securityalert/4218

[Various Sources] http://userwww.service.emory.edu/~ekenda2/EMORY-2008-01.txt

[Patch] http://www.telartis.nl/xcms/awstats/

[Third Party Advisory] http://www.vupen.com/english/advisories/2008/2442

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/44712

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/495770/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/30856

[Exploit, Third Party Advisory] http://www.exploit-db.com/exploits/17324

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/6368

[Third Party Advisory] http://securityreason.com/securityalert/8259

Scores

EPSS 0.9141

EPSS Percentile 99.7%

Details

VulnCheck KEV 2020-12-01

CWE

CWE-94

Status published

Products (5)

telartis_bv/awstats_totals 1.0

telartis_bv/awstats_totals 1.1

telartis_bv/awstats_totals 1.11

telartis_bv/awstats_totals 1.13

telartis_bv/awstats_totals 1.14

Published Sep 04, 2008

Tracked Since Feb 18, 2026