Lucene search
K

4 matches found

OpenVAS
OpenVAS
added 2006/03/26 12:0 a.m.393 views

Community Link Pro webeditor login.cgi remote command execution

The remote host is running Community Link Pro, a web-based application written in Perl. The remote version of this software contains a flaw in the script 'login.cgi' which may allow an attacker to execute arbitrary commands on the remote host. OpenVAS Vulnerability Test $Id:...

7.5CVSS0.5AI score0.02299EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2005/07/27 12:0 a.m.396 views

Community Link Pro login.cgi file Parameter Arbitrary Command Execution

The remote host is running Community Link Pro, a web-based application written in Perl. The remote version of this software fails to sanitize user input to the 'file' parameter of the 'login.cgi' script of shell metacharacters before using it to run a command. An unauthenticated attacker can...

7.5CVSS6.1AI score0.02299EPSS
Exploits1References2
NVD
NVD
added 2005/07/05 4:0 a.m.18 views

CVE-2005-2111

login.cgi in Community Link Pro Web Editor allows remote attackers to execute arbitrary commands via the file parameter...

7.5CVSS7.6AI score0.02299EPSS
Exploits1References4
CVE
CVE
added 2005/07/01 4:0 a.m.173 views

CVE-2005-2111

The OpenVAS/Nessus entries confirm CVE-2005-2111 affects Community Link Pro Web Editor’s login.cgi. The flaw lies in the login.cgi script where the file parameter is not sanitized, enabling an unauthenticated attacker to execute arbitrary commands on the remote host. This is described as remote c...

7.5CVSS7.6AI score0.02299EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder