Vulnerability Details CVE-2001-1343
ws_mail.cgi in WebStore 400/400CS 4.14 allows remote authenticated WebStore administrators to execute arbitrary code via shell metacharacters in the kill parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.078
EPSS Ranking 91.6%
CVSS Severity
CVSS v2 Score 7.5
References
- http://archives.neohapsis.com/archives/bugtraq/2001-06/0142.html
- http://www.securityfocus.com/bid/2861
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6685
- http://archives.neohapsis.com/archives/bugtraq/2001-06/0142.html
- http://www.securityfocus.com/bid/2861
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6685
Products affected by CVE-2001-1343
-
cpe:2.3:a:cgicentral:webstore_400:4.14
-
cpe:2.3:a:cgicentral:webstore_400cs:4.14