Cgiscript.net » Cspassword : Security Vulnerabilities, CVEs, CVSS score >= 6
CGIScript.net csPassword.cgi allows remote authenticated users to modify the .htaccess file and gain privileges via newlines in the title field of the edit page.
Max CVSS
7.5
EPSS Score
1.32%
Published
2002-10-04
Updated
2008-09-05
CGIScript.net csPassword.cgi stores .htpasswd files under the web document root, which could allow remote authenticated users to download the file and crack the passwords of other users.
Max CVSS
7.5
EPSS Score
1.12%
Published
2002-10-04
Updated
2008-09-05
2 vulnerabilities found