CVE-2002-0446

2002-06-1104:00:00

mitre

www.cve.org

6.7 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

71.6%

JSON

categorie.php3 in Black Tie Project (BTP) 0.4b through 0.5b allows remote attackers to determine the absolute path of the web server via an invalid category ID (cid) parameter, which leaks the pathname in an error message.

References

www.iss.net/security_center/static/8439.php

www.securityfocus.com/archive/1/261681

www.securityfocus.com/bid/4275