7.8 High
AI Score
Confidence
Low
0.002 Low
EPSS
Percentile
60.1%
Eval injection vulnerability in CPAINT 1.3-SP allows remote attackers to execute arbitrary ASP code via the cpaint_argument[] parameter to (1) calculator.asp or (2) cpaintfile.asp, which is directly fed into an eval statement.
marc.info/?l=bugtraq&m=112421484419768&w=2