Description
awstats.cgi in AWStats before 7.0 accepts a configdir parameter in the URL, which allows remote attackers to execute arbitrary commands via a crafted configuration file located on a (1) WebDAV server or (2) NFS server.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by StenoPlasma · textwebappscgi
https://www.exploit-db.com/exploits/35035
References (3)
Core 3
Core References
Vendor Advisory vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2011:033
Exploit x_refsource_misc
http://www.exploitdevelopment.com/Vulnerabilities/2010-WEB-001.html
Product x_refsource_confirm
http://awstats.sourceforge.net/docs/awstats_changelog.txt
Scores
EPSS
0.0727
EPSS Percentile
91.7%
Details
CWE
CWE-94
Status
published
Products (33)
awstats/awstats
1.0
awstats/awstats
2.1.
awstats/awstats
2.2.3
awstats/awstats
2.2.4
awstats/awstats
3.0
awstats/awstats
3.1
awstats/awstats
3.2
awstats/awstats
4.0
awstats/awstats
4.1
awstats/awstats
5.0
... and 23 more
Published
Dec 02, 2010
Tracked Since
Feb 18, 2026