Unrated severityNVD Advisory· Published Dec 4, 2022· Updated Apr 24, 2025
CVE-2022-46391
CVE-2022-46391
Description
AWStats 7.x through 7.8 allows XSS in the hostinfo plugin due to printing a response from Net::XWhois without proper checks.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
4- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/GRFYH4DE3COMI3LJCOQQXA4FWOABU6Z2/mitrevendor-advisory
- lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MYUZIFVB4N3NK4WGNHRNXZKJITCJBJX4/mitrevendor-advisory
- lists.debian.org/debian-lts-announce/2022/12/msg00010.htmlmitremailing-list
- github.com/eldy/AWStats/pull/226mitre
News mentions
0No linked articles in our index yet.