CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-0918

CGIScript.net csPassword.cgi leaks sensitive information such as the pathname of the server in debug messages that are presented when the script fails, which allows remote attackers to obtain the information via a "remove" option in the command parameter, which generates an error.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.086

EPSS Ranking 92.1%

CVSS Severity

CVSS v2 Score 5.0

References

http://online.securityfocus.com/archive/1/274727
http://www.iss.net/security_center/static/9221.php
http://www.securityfocus.com/bid/4887
http://online.securityfocus.com/archive/1/274727
http://www.iss.net/security_center/static/9221.php
http://www.securityfocus.com/bid/4887

Products affected by CVE-2002-0918

Cgiscript.net » Cspassword » Version: 1.0

cpe:2.3:a:cgiscript.net:cspassword:1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-0918

Products

Pricing

Contact Us