VYPR
Unrated severityNVD Advisory· Published Nov 14, 2000· Updated Jun 16, 2026

CVE-2000-0877

CVE-2000-0877

Description

mailform.pl CGI script in MailForm 2.0 allows remote attackers to read arbitrary files by specifying the file name in the XX-attach_file parameter, which MailForm then sends to the attacker.

Affected products

2

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.