CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-0446

categorie.php3 in Black Tie Project (BTP) 0.4b through 0.5b allows remote attackers to determine the absolute path of the web server via an invalid category ID (cid) parameter, which leaks the pathname in an error message.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 73.6%

CVSS Severity

CVSS v2 Score 5.0

References

http://www.iss.net/security_center/static/8439.php
http://www.securityfocus.com/archive/1/261681
http://www.securityfocus.com/bid/4275
http://www.iss.net/security_center/static/8439.php
http://www.securityfocus.com/archive/1/261681
http://www.securityfocus.com/bid/4275

Products affected by CVE-2002-0446

Black Tie Project » Black Tie Project » Version: 0.4b

cpe:2.3:a:black_tie_project:black_tie_project:0.4b
Black Tie Project » Black Tie Project » Version: 0.5

cpe:2.3:a:black_tie_project:black_tie_project:0.5
Black Tie Project » Black Tie Project » Version: 0.5b

cpe:2.3:a:black_tie_project:black_tie_project:0.5b

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-0446

Products

Pricing

Contact Us