The htdig (ht://Dig) CGI program htsearch allows remote attackers to read arbitrary files by enclosing the file name with backticks (`) in parameters to htsearch.
CVSS Score
5.0
EPSS Score
0.067
Published
2000-02-29