Shodan
Vulnerabilities
Vulnerable Software
Matt Wright:  Security Vulnerabilities
CVE-2000-0411
Matt Wright's FormMail CGI script allows remote attackers to obtain environmental variables via the env_report parameter.
CVSS Score
5.0
EPSS Score
0.038
Published
2000-05-10
CVE-1999-1051
Default configuration in Matt Wright FormHandler.cgi script allows arbitrary directories to be used for attachments, and only restricts access to the /etc/ directory, which allows remote attackers to read arbitrary files via the reply_message_attach attachment parameter.
CVSS Score
5.0
EPSS Score
0.01
Published
1999-11-16
CVE-1999-1050
Directory traversal vulnerability in Matt Wright FormHandler.cgi script allows remote attackers to read arbitrary files via (1) a .. (dot dot) in the reply_message_attach attachment parameter, or (2) by specifying the filename as a template.
CVSS Score
5.0
EPSS Score
0.048
Published
1999-11-12
CVE-1999-0953
WWWBoard stores encrypted passwords in a password file that is under the web root and thus accessible by remote attackers.
CVSS Score
10.0
EPSS Score
0.032
Published
1999-09-16
CVE-1999-0954
WWWBoard has a default username and default password.
CVSS Score
7.5
EPSS Score
0.005
Published
1999-09-16
CVE-1999-1053
guestbook.pl cleanses user-inserted SSI commands by removing text between "<!--" and "-->" separators, which allows remote attackers to execute arbitrary commands when guestbook.pl is run on Apache 1.3.9 and possibly other versions, since Apache allows other closing sequences besides "-->".
CVSS Score
7.5
EPSS Score
0.862
Published
1999-09-13
CVE-1999-1377
Matt Wright's download.cgi 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the f parameter.
CVSS Score
5.0
EPSS Score
0.014
Published
1999-09-09
CVE-1999-0930
wwwboard allows a remote attacker to delete message board articles via a malformed argument.
CVSS Score
5.0
EPSS Score
0.005
Published
1998-09-03
CVE-1999-1479
The textcounter.pl by Matt Wright allows remote attackers to execute arbitrary commands via shell metacharacters.
CVSS Score
10.0
EPSS Score
0.039
Published
1998-06-24
CVE-1999-0173
FormMail CGI program can be used by web servers other than the host server that the program resides on.
CVSS Score
5.0
EPSS Score
0.03
Published
1997-01-01


Products
Pricing
Contact Us

Shodan ® - All rights reserved