Ezshopper
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2000-0187 | 0.04 | — | 0.13 | Feb 27, 2000 | EZShopper 3.0 loadpage.cgi CGI script allows remote attackers to read arbitrary files via a .. (dot dot) attack or execute commands via shell metacharacters. | |||
| CVE-2000-1092 | 0.03 | — | 0.04 | Jan 9, 2001 | loadpage.cgi CGI program in EZshopper 3.0 and 2.0 allows remote attackers to list and read files in the EZshopper data directory by inserting a "/" in front of the target filename in the "file" parameter. | |||
| CVE-2000-0188 | 0.00 | — | 0.03 | Feb 27, 2000 | EZShopper 3.0 search.cgi CGI script allows remote attackers to read arbitrary files via a .. (dot dot) attack or execute commands via shell metacharacters. |
- CVE-2000-0187Feb 27, 2000risk 0.04cvss —epss 0.13
EZShopper 3.0 loadpage.cgi CGI script allows remote attackers to read arbitrary files via a .. (dot dot) attack or execute commands via shell metacharacters.
- CVE-2000-1092Jan 9, 2001risk 0.03cvss —epss 0.04
loadpage.cgi CGI program in EZshopper 3.0 and 2.0 allows remote attackers to list and read files in the EZshopper data directory by inserting a "/" in front of the target filename in the "file" parameter.
- CVE-2000-0188Feb 27, 2000risk 0.00cvss —epss 0.03
EZShopper 3.0 search.cgi CGI script allows remote attackers to read arbitrary files via a .. (dot dot) attack or execute commands via shell metacharacters.