VYPR
Unrated severityNVD Advisory· Published Nov 12, 1999· Updated Jun 16, 2026

CVE-1999-1050

CVE-1999-1050

Description

Directory traversal vulnerability in Matt Wright FormHandler.cgi script allows remote attackers to read arbitrary files via (1) a .. (dot dot) in the reply_message_attach attachment parameter, or (2) by specifying the filename as a template.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • cpe:2.3:a:matt_wright:formhandler.cgi:1.0:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:matt_wright:formhandler.cgi:1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:matt_wright:formhandler.cgi:2.0:*:*:*:*:*:*:*
    • cpe:2.3:a:matt_wright:formhandler.cgi:3.0:*:*:*:*:*:*:*
    • (no CPE)

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.