Unrated severityNVD Advisory· Published Aug 12, 2002· Updated Apr 16, 2026

CVE-2002-0495

Description

csSearch.cgi in csSearch 2.3 and earlier allows remote attackers to execute arbitrary Perl code via the savesetup command and the setup parameter, which overwrites the setup.cgi configuration file that is loaded by csSearch.cgi.

Affected products

Cgiscript/Cssearch Professional
cpe:2.3:a:cgiscript:cssearch_professional:*:*:*:*:*:*:*:*
Range: <=2.3

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.iss.net/security_center/static/8636.phpnvdBroken LinkPatchVendor Advisory
www.securityfocus.com/bid/4368nvdBroken LinkExploitPatchThird Party AdvisoryVDB EntryVendor Advisory
www.securityfocus.com/archive/1/264169nvdBroken LinkThird Party AdvisoryVDB EntryVendor Advisory
www.cgiscript.net/cgi-script/csNews/csNews.cginvdProduct

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.012
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000