2 matches found
CVE-2001-0210
CVE-2001-0210 describes a directory traversal in the commerce.cgi CGI program that lets remote attackers read arbitrary files by manipulating the page parameter with a .. (dot dot) traversal. Documented impact is partial confidentiality loss; attack vector is remote over the network with low comp...
CVE-2001-0210
Directory traversal vulnerability in commerce.cgi CGI program allows remote attackers to read arbitrary files via a .. dot dot attack in the page parameter...