There is a vulnerability in AWStats 6.2 and previous versions which leads to remote command execution. This gives an attacker almost full control over the server. This vulnerability was first disclosed on 17th January 2005. We urge everybody who is using AWStats to make sure they are using 6.3. This vulnerability has been fixed in 6.1 since January 17th, but we are seeing mostly defacements from sites using the older version of AWStats. We are seeing mainly defacements, but you are highly recommended to thoroughly check your servers.”]
Source: https://securelist.com/sites-using-awstats-are-being-targeted/29958/