Current time: 11-29-2024, 10:20 AM Hello There, Guest! (LoginRegister)


Post Reply 
AWstats 6.9
Author Message
moulin Offline


Posts: 4
Joined: Jan 2007
Reputation: 0
Post: #1
AWstats 6.9
AWstats is mentioning a security risk in AWstats 6.8 or lower.
Quote:Not correctly sanitized parameters can be used to have AWStats URL generate an output with an URL that contains javscript used for a XSS attacks.
see website

Since ispCP Omega bundles version 6.7 I was wondering if any of you tried to install a newer version of AWstats. I know the script is only accessible after a .htaccess.
Would like to hear your thoughts...
04-11-2009 11:11 PM
Find all posts by this user Quote this message in a reply
RatS Offline
Project Leader
******

Posts: 1,854
Joined: Oct 2006
Reputation: 17
Post: #2
RE: AWstats 6.9
actually just update your distribution, because AWStats will be installed via the distribution repositories. We only deliver a predefined config and the maillogconvert.pl.
04-12-2009 03:06 PM
Visit this user's website Find all posts by this user Quote this message in a reply
Post Reply 


Forum Jump:


User(s) browsing this thread: 2 Guest(s)