Vulnerability Details CVE-2002-1627
Directory traversal vulnerability in quiz.cgi for Mike Spice Quiz Me! before 0.6 allows remote attackers to write arbitrary files via .. (dot dot) sequences in the quiz parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 68.3%
CVSS Severity
CVSS v2 Score 5.0
References
- http://securitytracker.com/id?1003254
- http://www.kb.cert.org/vuls/id/318835
- http://www.securityfocus.com/bid/3857
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7970
- http://securitytracker.com/id?1003254
- http://www.kb.cert.org/vuls/id/318835
- http://www.securityfocus.com/bid/3857
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7970
Products affected by CVE-2002-1627
-
cpe:2.3:a:mike_spice:quiz_me:0.5