CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-1999-1177

Directory traversal vulnerability in nph-publish before 1.2 allows remote attackers to overwrite arbitrary files via a .. (dot dot) in the pathname for an upload operation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.01

EPSS Ranking 75.4%

CVSS Severity

CVSS v2 Score 5.0

References

http://www-genome.wi.mit.edu/WWW/tools/CGI_scripts/server_publish/nph-publish
http://www.w3.org/Security/Faq/wwwsf4.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/2055
http://www-genome.wi.mit.edu/WWW/tools/CGI_scripts/server_publish/nph-publish
http://www.w3.org/Security/Faq/wwwsf4.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/2055

Products affected by CVE-1999-1177

Lincoln D. Stein » Nph-Publish » Version: Any

cpe:2.3:a:lincoln_d._stein:nph-publish:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-1999-1177

Products

Pricing

Contact Us