CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-1087

The scripts (1) createdir.php, (2) removedir.php and (3) uploadfile.php for ezContents 1.41 and earlier do not check credentials, which allows remote attackers to create or delete directories and upload files via a direct HTTP POST request.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 65.6%

CVSS Severity

CVSS v2 Score 5.0

References

http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0040.html
http://online.securityfocus.com/archive/1/284229
http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0040.html
http://online.securityfocus.com/archive/1/284229

Products affected by CVE-2002-1087

Visualshapers » Ezcontents » Version: Any

cpe:2.3:a:visualshapers:ezcontents:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-1087

Products

Pricing

Contact Us