Unrated severityNVD Advisory· Published Oct 7, 2001· Updated Jun 16, 2026
CVE-2001-1100
CVE-2001-1100
Description
sendmessage.cgi in W3Mail 1.0.2, and possibly other CGI programs, allows remote attackers to execute arbitrary commands via shell metacharacters in any field of the 'Compose Message' page.
Affected products
1- cpe:2.3:a:spencer_miles:w3mail:1.0.2:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
4- www.securityfocus.com/archive/1/218921nvdExploitPatchVendor Advisory
- www.securityfocus.com/bid/3673nvdVendor Advisory
- www.w3mail.org/ChangeLognvd
- exchange.xforce.ibmcloud.com/vulnerabilities/7230nvd
News mentions
0No linked articles in our index yet.