CVE-2012-4547
published 2012-10-31CVE-2012-4547: Unspecified vulnerability in awredir.pl in AWStats before 7.1 has unknown impact and attack vectors.
PriorityP424medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
5.80%
92.2th percentile
Unspecified vulnerability in awredir.pl in AWStats before 7.1 has unknown impact and attack vectors.
Affected
36 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| awstats | awstats | >= 0 < 7.1~dfsg-1 | 7.1~dfsg-1 |
| awstats | awstats | >= 0 < 7.1~dfsg-1 | 7.1~dfsg-1 |
| awstats | awstats | >= 0 < 7.1~dfsg-1 | 7.1~dfsg-1 |
| awstats | awstats | >= 0 < 7.1~dfsg-1 | 7.1~dfsg-1 |
| debian | awstats | < awstats 7.1~dfsg-1 (bookworm) | awstats 7.1~dfsg-1 (bookworm) |
| laurent_destailleur | awstats | <= 7.0 | — |
| laurent_destailleur | awstats | — | — |
| laurent_destailleur | awstats | — | — |
| laurent_destailleur | awstats | — | — |
| laurent_destailleur | awstats | — | — |
| laurent_destailleur | awstats | — | — |
| laurent_destailleur | awstats | — | — |
| laurent_destailleur | awstats | — | — |
| laurent_destailleur | awstats | — | — |
| laurent_destailleur | awstats | — | — |
| laurent_destailleur | awstats | — | — |
| laurent_destailleur | awstats | — | — |
| laurent_destailleur | awstats | — | — |
| laurent_destailleur | awstats | — | — |
| laurent_destailleur | awstats | — | — |
| laurent_destailleur | awstats | — | — |
| laurent_destailleur | awstats | — | — |
| laurent_destailleur | awstats | — | — |
| laurent_destailleur | awstats | — | — |
| laurent_destailleur | awstats | — | — |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
osv4.3MEDIUM
vendor_debian4.3LOW
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-vx3h-mw4x-r37x: Unspecified vulnerability in awredir
ghsa_unreviewed·2022-05-17
CVE-2012-4547 [MEDIUM] CWE-79 GHSA-vx3h-mw4x-r37x: Unspecified vulnerability in awredir
Unspecified vulnerability in awredir.pl in AWStats before 7.1 has unknown impact and attack vectors.
OSV
CVE-2012-4547: Unspecified vulnerability in awredir
osv·2012-10-31·CVSS 4.3
CVE-2012-4547 [MEDIUM] CVE-2012-4547: Unspecified vulnerability in awredir
Unspecified vulnerability in awredir.pl in AWStats before 7.1 has unknown impact and attack vectors.
Debian
CVE-2012-4547: awstats - Unspecified vulnerability in awredir.pl in AWStats before 7.1 has unknown impact...
vendor_debian·2012·CVSS 4.3
CVE-2012-4547 [MEDIUM] CVE-2012-4547: awstats - Unspecified vulnerability in awredir.pl in AWStats before 7.1 has unknown impact...
Unspecified vulnerability in awredir.pl in AWStats before 7.1 has unknown impact and attack vectors.
Scope: local
bookworm: resolved (fixed in 7.1~dfsg-1)
bullseye: resolved (fixed in 7.1~dfsg-1)
forky: resolved (fixed in 7.1~dfsg-1)
sid: resolved (fixed in 7.1~dfsg-1)
trixie: resolved (fixed in 7.1~dfsg-1)
No detection rules found.
Exploit-DB
Cisco Linksys PlayerPT - ActiveX Control SetSource sURL argument Buffer Overflow (Metasploit)
exploitdb·2012-08-03
CVE-2012-0284 Cisco Linksys PlayerPT - ActiveX Control SetSource sURL argument Buffer Overflow (Metasploit)
Cisco Linksys PlayerPT - ActiveX Control SetSource sURL argument Buffer Overflow (Metasploit)
---
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# web site for more information on licensing and terms of use.
# http://metasploit.com/
##
require 'msf/core'
class Metasploit3 HttpClients::IE,
:ua_minver => "6.0",
:ua_maxver => "9.0",
:javascript => true,
:os_name => OperatingSystems::WINDOWS,
:classid => "{9E065E4A-BD9D-4547-8F90-985DC62A5591}",
:method => "SetSource",
:rank => NormalRanking
})
def initialize(info = {})
super(update_info(info,
'Name' => 'Cisco Linksys PlayerPT ActiveX Control SetSource sURL argument Buffer Overflow',
'Description' => %q{
This module exploits a vulnerability
Nuclei
AWStats 6.95/7.0 - 'awredir.pl' Cross-Site Scripting
nuclei·CVSS 4.3
CVE-2012-4547 [MEDIUM] AWStats 6.95/7.0 - 'awredir.pl' Cross-Site Scripting
AWStats 6.95/7.0 - 'awredir.pl' Cross-Site Scripting
AWStats is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input.
Template:
id: CVE-2012-4547
info:
name: AWStats 6.95/7.0 - 'awredir.pl' Cross-Site Scripting
author: dhiyaneshDk
severity: medium
description: AWStats is prone to multiple cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input.
remediation: |
Apply the latest security patches and updates from the vendor to address this vulnerability.
impact: |
Allows remote attackers to inject arbitrary web script or HTML via the 'url' parameter.
reference:
- https://www.exploit-db.com/exploits/36164
- https://nvd.nist.gov/vuln/detail/CVE-2012-4547
- http://awsta
Greynoiseio
NoiseLetter September 2025
blogs_greynoiseio
NoiseLetter September 2025
CVE Disclosure Early Warning Get an early warning when traffic spikes indicate a high likelihood of new disclosures
Compromised Asset Detection Find out immediately if an asset communicates with a malicious IP address
Vulnerability Prioritization Get real-time insight into active exploitation trends to better understand risk and severity
SOC Efficiency Filter out noisy, low priority and false-positive alerts from mass internet scanners
Incident Investigation Add context to incidents to speed the determinations of scope and timelines
Threat Hunting Quickly identify anomalous behavior and enrich your threat hunting campaigns
Why GreyNoise
CVE Disclosure Early Warning Get an early warning when traffic spikes indicate a high likelihood of new disclosures
Compromised Asset Detection Fin
Bugzilla
CVE-2012-4547 awstats: potentially susceptible to XSS attacks
bugzilla·2012-10-29·CVSS 4.3
CVE-2012-4547 [MEDIUM] CVE-2012-4547 awstats: potentially susceptible to XSS attacks
CVE-2012-4547 awstats: potentially susceptible to XSS attacks
A new CleanXSS() function was added [1] to awstats' awredir.pl cgi script and is part of the 7.1 release [2]. The additional function aims to clean strings of HTML tags so as to avoid XSS flaws.
It doesn't indicate whether or not it was possible to actually inject arbitrary HTML into these strings or whether this was just a hardening mechanism, however this would be applicable to all currently supported versions of awstats.
[1] http://awstats.cvs.sourceforge.net/viewvc/awstats/awstats/wwwroot/cgi-bin/awredir.pl?r1=1.13&r2=1.14
[2] http://awstats.sourceforge.net/docs/awstats_changelog.txt
Discussion:
Created awstats tracking bugs for this issue
Affects: fedora-all [bug 871189]
Affects: epel-all [bug 871190]
---
awstats-7.
Bugzilla
CVE-2012-4547 awstats: potentially susceptible to XSS attacks [epel-all]
bugzilla·2012-10-29·CVSS 4.3
CVE-2012-4547 [MEDIUM] CVE-2012-4547 awstats: potentially susceptible to XSS attacks [epel-all]
CVE-2012-4547 awstats: potentially susceptible to XSS attacks [epel-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora EPEL.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please use the bodhi submission link
noted in the next comment(s). This will include the bug IDs of this
tracking bug as well as the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field when available.
Please note: this issue aff
Bugzilla
CVE-2012-4547 awstats: potentially susceptible to XSS attacks [fedora-all]
bugzilla·2012-10-29·CVSS 4.3
CVE-2012-4547 [MEDIUM] CVE-2012-4547 awstats: potentially susceptible to XSS attacks [fedora-all]
CVE-2012-4547 awstats: potentially susceptible to XSS attacks [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please use the bodhi submission link
noted in the next comment(s). This will include the bug IDs of this
tracking bug as well as the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field when available.
Please note: this issue affect
http://awstats.sourceforge.net/docs/awstats_changelog.txthttp://openwall.com/lists/oss-security/2012/10/26/1http://openwall.com/lists/oss-security/2012/10/29/7http://www.securityfocus.com/bid/56280https://exchange.xforce.ibmcloud.com/vulnerabilities/79638http://awstats.sourceforge.net/docs/awstats_changelog.txthttp://openwall.com/lists/oss-security/2012/10/26/1http://openwall.com/lists/oss-security/2012/10/29/7http://www.securityfocus.com/bid/56280https://exchange.xforce.ibmcloud.com/vulnerabilities/79638
2012-10-31
Published