Vulnerability Details CVE-2002-1515
Directory traversal vulnerability in avatar.php in CoolForum 0.5 beta allows remote attackers to read arbitrary files via .. (dot dot) sequences in the img parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.015
EPSS Ranking 80.6%
CVSS Severity
CVSS v2 Score 5.0
References
- http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0001.html
- http://online.securityfocus.com/archive/1/295358
- http://www.coolforum.net/index.php?p=dlcoolforum
- http://www.iss.net/security_center/static/10237.php
- http://www.securityfocus.com/bid/5973
- http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0001.html
- http://online.securityfocus.com/archive/1/295358
- http://www.coolforum.net/index.php?p=dlcoolforum
- http://www.iss.net/security_center/static/10237.php
- http://www.securityfocus.com/bid/5973