Format string vulnerability in cgiemail and cgiecho allows remote attackers to execute arbitrary code via format string specifiers in a template file.
7.8CVSS
7.1AI Score
0.018EPSS
cgiemail and cgiecho allow remote attackers to inject HTTP headers via a newline character in the redirect location.
6.1CVSS
6.1AI Score
0.001EPSS
Cross-site scripting (XSS) vulnerability in cgiemail and cgiecho allows remote attackers to inject arbitrary web script or HTML via the addendum parameter.
6.1CVSS
5.9AI Score
0.001EPSS