Cgiscript.net » Csnews : Security Vulnerabilities, CVEs, CVSS score >= 6
CGIScript.net csNews.cgi allows remote authenticated users to execute arbitrary Perl code via terminating quotes and metacharacters in text fields of the "Advanced Settings" capability.
Max CVSS
7.5
EPSS Score
1.53%
Published
2002-10-04
Updated
2008-09-10
CGIScript.net csNews.cgi allows remote authenticated users to read arbitrary files, and possibly gain privileges, via the (1) pheader or (2) pfooter parameters in the "Advanced Settings" capability.
Max CVSS
7.5
EPSS Score
2.42%
Published
2002-10-04
Updated
2008-09-05
2 vulnerabilities found