Csmailto
CVEs (4)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2002-0749 | 0.03 | — | 0.05 | Aug 12, 2002 | CGIscript.net csMailto.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the form-attachment field. | ||
| CVE-2002-0752 | 0.00 | — | 0.01 | Aug 12, 2002 | CGIscript.net csMailto.cgi program exports feedback to a file that is accessible from the web document root, which could allow remote attackers to obtain sensitive information by directly accessing the file. | ||
| CVE-2002-0750 | 0.00 | — | 0.01 | Aug 12, 2002 | CGIscript.net csMailto.cgi program allows remote attackers to read arbitrary files by specifying the target filename in the form-attachment field. | ||
| CVE-2002-0751 | 0.00 | — | 0.01 | Aug 12, 2002 | CGIscript.net csMailto.cgi program allows remote attackers to use csMailto as a "spam proxy" and send mail to arbitrary users via modified (1) form-to, (2) form-from, and (3) form-results parameters. |
- CVE-2002-0749Aug 12, 2002risk 0.03cvss —epss 0.05
CGIscript.net csMailto.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the form-attachment field.
- CVE-2002-0752Aug 12, 2002risk 0.00cvss —epss 0.01
CGIscript.net csMailto.cgi program exports feedback to a file that is accessible from the web document root, which could allow remote attackers to obtain sensitive information by directly accessing the file.
- CVE-2002-0750Aug 12, 2002risk 0.00cvss —epss 0.01
CGIscript.net csMailto.cgi program allows remote attackers to read arbitrary files by specifying the target filename in the form-attachment field.
- CVE-2002-0751Aug 12, 2002risk 0.00cvss —epss 0.01
CGIscript.net csMailto.cgi program allows remote attackers to use csMailto as a "spam proxy" and send mail to arbitrary users via modified (1) form-to, (2) form-from, and (3) form-results parameters.