exploitDog

CVE-2002-0445

Опубликовано: 26 июл. 2002

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

article.php in PHP FirstPost 0.1 allows allows remote attackers to obtain the full pathname of the server via an invalid post number in the post parameter, which leaks the pathname in an error message.

Ссылки

http://www.iss.net/security_center/static/8434.php
Vendor Advisory
http://www.osvdb.org/7170
http://www.securityfocus.com/archive/1/261337
Vendor Advisory
http://www.securityfocus.com/bid/4274
Vendor Advisory
http://www.iss.net/security_center/static/8434.php
Vendor Advisory
http://www.osvdb.org/7170
http://www.securityfocus.com/archive/1/261337
Vendor Advisory
http://www.securityfocus.com/bid/4274
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:php_firstpost:php_firstpost:0.1:*:*:*:*:*:*:*

EPSS

Процентиль: 70%

0.0063

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-cfh5-99ph-cp7h

github

почти 4 года назад

article.php in PHP FirstPost 0.1 allows allows remote attackers to obtain the full pathname of the server via an invalid post number in the post parameter, which leaks the pathname in an error message.

EPSS

Процентиль: 70%

0.0063

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other