A cross-site scripting (XSS) vulnerability was found in AWStats that allowed remote attackers to inject arbitrary web script or HTML via the query_string (CVE-2008-3714).
The updated packages have been patched to prevent this issue.
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.