Critical severity9.8OSV Advisory· Published Jan 3, 2018· Updated Jun 17, 2026
CVE-2017-1000501
CVE-2017-1000501
Description
Awstats version 7.6 and earlier is vulnerable to a path traversal flaw in the handling of the "config" and "migrate" parameters resulting in unauthenticated remote code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 7.5, 7.6, 7.7, …
Patches
Vulnerability mechanics
References
6- github.com/eldy/awstats/commit/06c0ab29c1e5059d9e0279c6b64d573d619e1651nvdPatchThird Party Advisory
- github.com/eldy/awstats/commit/cf219843a74c951bf5986f3a7fffa3dcf99c3899nvdPatchThird Party Advisory
- www.awstats.orgnvdVendor Advisory
- lists.debian.org/debian-lts-announce/2018/01/msg00012.htmlnvdMailing ListThird Party Advisory
- www.debian.org/security/2018/dsa-4092nvdThird Party Advisory
- security.gentoo.org/glsa/202007-37nvd
News mentions
0No linked articles in our index yet.