VYPR
Unrated severityNVD Advisory· Published Oct 4, 2002· Updated Jun 16, 2026

CVE-2002-0921

CVE-2002-0921

Description

CGIScript.net csNews.cgi allows remote attackers to obtain potentially sensitive information, such as the full server pathname and other configuration settings, via the viewnews command with an invalid database, which leaks the information in error messages.

Affected products

3
  • cpe:2.3:a:cgiscript.net:csnews:1.0:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:cgiscript.net:csnews:1.0:*:*:*:*:*:*:*
    • cpe:2.3:a:cgiscript.net:csnews:1.0_professional:*:*:*:*:*:*:*
    • (no CPE)

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.