Unrated severityNVD Advisory· Published Oct 4, 2002· Updated Apr 16, 2026

CVE-2002-1087

Description

The scripts (1) createdir.php, (2) removedir.php and (3) uploadfile.php for ezContents 1.41 and earlier do not check credentials, which allows remote attackers to create or delete directories and upload files via a direct HTTP POST request.

Affected products

Visualshapers/Ezcontents
cpe:2.3:a:visualshapers:ezcontents:*:*:*:*:*:*:*:*
Range: <=1.41

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

archives.neohapsis.com/archives/vulnwatch/2002-q3/0040.htmlnvdVendor Advisory
online.securityfocus.com/archive/1/284229nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000