Facebook
Twitter
M
meat
Guest
I'm wondering how I would go about updating awstats inside of plesk, currently we are using plesk 9.2.
I'm asking because currently we are failing PCI Compliance testing based on awstats being an older version. This is the message that our PCI compliance scan is giving us:
Synopsis : The remote web server hosts a Perl script that has an open redirect. Description : The 'awredir.pl' script available through the remote web server as part of an AWStats install that has an open redirect. An attacker may be able to exploit this issue to conduct phishing attacks by tricking users into visiting malicious websites. See also : http://awstats.sourceforge.net/docs/awst ats_changelog.txt Solution: Upgrade to AWStats version 6.95 or later if necessary. And make sure the variable '$KEYFORMD5' defined in the affected script is set to a personalized value.
Any help is greatly appreciated.
I'm asking because currently we are failing PCI Compliance testing based on awstats being an older version. This is the message that our PCI compliance scan is giving us:
Synopsis : The remote web server hosts a Perl script that has an open redirect. Description : The 'awredir.pl' script available through the remote web server as part of an AWStats install that has an open redirect. An attacker may be able to exploit this issue to conduct phishing attacks by tricking users into visiting malicious websites. See also : http://awstats.sourceforge.net/docs/awst ats_changelog.txt Solution: Upgrade to AWStats version 6.95 or later if necessary. And make sure the variable '$KEYFORMD5' defined in the affected script is set to a personalized value.
Any help is greatly appreciated.
