CVE-2002-1627

Опубликовано: 31 дек. 2002

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Directory traversal vulnerability in quiz.cgi for Mike Spice Quiz Me! before 0.6 allows remote attackers to write arbitrary files via .. (dot dot) sequences in the quiz parameter.

Ссылки

http://securitytracker.com/id?1003254
http://www.kb.cert.org/vuls/id/318835
Patch
US Government Resource
http://www.securityfocus.com/bid/3857
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/7970
http://securitytracker.com/id?1003254
http://www.kb.cert.org/vuls/id/318835
Patch
US Government Resource
http://www.securityfocus.com/bid/3857
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/7970

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:mike_spice:quiz_me:0.5:*:*:*:*:*:*:*

EPSS

Процентиль: 83%

0.01955

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-pjrq-367x-hmqj

github

почти 4 года назад