CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-0923

CGIScript.net csNews.cgi allows remote authenticated users to read arbitrary files, and possibly gain privileges, via the (1) pheader or (2) pfooter parameters in the "Advanced Settings" capability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.031

EPSS Ranking 86.3%

CVSS Severity

CVSS v2 Score 7.5

References

http://archives.neohapsis.com/archives/bugtraq/2002-06/0091.html
http://www.iss.net/security_center/static/9333.php
http://www.securityfocus.com/bid/4994
http://archives.neohapsis.com/archives/bugtraq/2002-06/0091.html
http://www.iss.net/security_center/static/9333.php
http://www.securityfocus.com/bid/4994

Products affected by CVE-2002-0923

Cgiscript.net » Csnews » Version: 1.0

cpe:2.3:a:cgiscript.net:csnews:1.0
Cgiscript.net » Csnews » Version: 1.0_professional

cpe:2.3:a:cgiscript.net:csnews:1.0_professional

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-0923

Products

Pricing

Contact Us