Lucene search

K
cve[email protected]CVE-2002-0445
HistorySep 01, 2004 - 4:00 a.m.

CVE-2002-0445

2004-09-0104:00:00
web.nvd.nist.gov
21
cve-2002-0445
php firstpost 0.1
server pathname leak
remote attacker
error message

7.1 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.005 Low

EPSS

Percentile

76.3%

article.php in PHP FirstPost 0.1 allows allows remote attackers to obtain the full pathname of the server via an invalid post number in the post parameter, which leaks the pathname in an error message.

Affected configurations

NVD
Node
php_firstpostphp_firstpostMatch0.1

7.1 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.005 Low

EPSS

Percentile

76.3%

Related for CVE-2002-0445