CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-0924

CGIScript.net csNews.cgi allows remote authenticated users to execute arbitrary Perl code via terminating quotes and metacharacters in text fields of the "Advanced Settings" capability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 69.7%

CVSS Severity

CVSS v2 Score 7.5

References

http://archives.neohapsis.com/archives/bugtraq/2002-06/0091.html
http://www.securityfocus.com/bid/4451
http://archives.neohapsis.com/archives/bugtraq/2002-06/0091.html
http://www.securityfocus.com/bid/4451

Products affected by CVE-2002-0924

Cgiscript.net » Csnews » Version: 1.0

cpe:2.3:a:cgiscript.net:csnews:1.0
Cgiscript.net » Csnews » Version: 1.0_professional

cpe:2.3:a:cgiscript.net:csnews:1.0_professional

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-0924

Products

Pricing

Contact Us