Leif M. Wright: >> Web Blog >> 1.1 Security Vulnerabilities
blog.cgi in Leif M. Wright Web Blog 1.1 and 1.1.5 allows remote attackers to execute arbitrary commands via shell metacharacters such as '|' in the file parameter of ViewFile requests.
CVSS Score
7.5
EPSS Score
0.117
Published
2004-12-31
Directory traversal vulnerability in Web Blog 1.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the file variable.
CVSS Score
5.0
EPSS Score
0.086
Published
2004-01-20