Directory traversal vulnerability in normal_html.cgi in Happycgi.com Happymall 4.3 and 4.4 allows remote attackers to read arbitrary files via .. (dot dot) sequences in the file parameter.
Max CVSS
5.0
EPSS Score
2.36%
Published
2003-06-16
Updated
2017-07-11
Happycgi.com Happymall 4.3 and 4.4 allows remote attackers to execute arbitrary commands via shell metacharacters in the file parameter for the (1) normal_html.cgi or (2) member_html.cgi scripts.
Max CVSS
7.5
EPSS Score
1.71%
Published
2003-05-27
Updated
2008-09-10
2 vulnerabilities found