CVE Vulnerabilities

CVE-2002-0924

Published: Oct 04, 2002 | Modified: Sep 10, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

CGIScript.net csNews.cgi allows remote authenticated users to execute arbitrary Perl code via terminating quotes and metacharacters in text fields of the Advanced Settings capability.

Affected Software

Name Vendor Start Version End Version
Csnews Cgiscript.net 1.0 1.0
Csnews Cgiscript.net 1.0_professional 1.0_professional

References