CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-0934

Directory traversal vulnerability in Jon Hedley AlienForm2 (typically installed as af.cgi or alienform.cgi) allows remote attackers to read or modify arbitrary files via an illegal character in the middle of a .. (dot dot) sequence in the parameters (1) _browser_out or (2) _out_file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.011

EPSS Ranking 77.2%

CVSS Severity

CVSS v2 Score 6.4

References

http://archives.neohapsis.com/archives/bugtraq/2002-06/0068.html
http://www.iss.net/security_center/static/9325.php
http://www.securityfocus.com/bid/4983
http://archives.neohapsis.com/archives/bugtraq/2002-06/0068.html
http://www.iss.net/security_center/static/9325.php
http://www.securityfocus.com/bid/4983

Products affected by CVE-2002-0934

Jon Hedley » Alienform2 » Version: 1.5

cpe:2.3:a:jon_hedley:alienform2:1.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-0934

Products

Pricing

Contact Us