CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
Percentile
76.9%
Fulltext search CGI is a website search software from futomi’s CGI Cafe. Fulltext search CGI contains a vulnerability that allows an attacker to gain administrative privileges.
A remote attacker could impersonate an administrator of fulltext search CGI.
Update the Software
Update to the latest version according to the information provided by the vendor.
Workarounds
As a workaround to this vulnerability, change the settings in the server where the software is installed and disable access to the administrator menu until the software is updated.