2 matches found
CVE-1999-0937
CVE-1999-0937 affects BNBForm’s bnbform.cgi CGI script. The vulnerability arises from insufficient filtering of user input in the automessage hidden variable, enabling remote attackers to read arbitrary files on the host (for example, via automessage value specifying a system file). Impact is rea...
CVE-1999-0937
BNBForm allows remote attackers to read arbitrary files via the automessage hidden form variable...