Csmailto Security Vulnerabilities and Issues — Csmailto CVE List

Lucene search

Cgiscript.netCsmailto

4 matches found

CVE•added 2002/08/12 4:0 a.m.•37 views

CVE-2002-0750

CGIscript.net csMailto.cgi program allows remote attackers to read arbitrary files by specifying the target filename in the form-attachment field.

5CVSS6.7AI score0.01296EPSS

CVE•added 2002/08/12 4:0 a.m.•34 views

CVE-2002-0749

CGIscript.net csMailto.cgi allows remote attackers to execute arbitrary commands via shell metacharacters in the form-attachment field.

7.5CVSS7.7AI score0.06609EPSS

CVE•added 2002/08/12 4:0 a.m.•34 views

CVE-2002-0751

CGIscript.net csMailto.cgi program allows remote attackers to use csMailto as a "spam proxy" and send mail to arbitrary users via modified (1) form-to, (2) form-from, and (3) form-results parameters.

7.5CVSS6.8AI score0.01242EPSS

CVE•added 2002/08/12 4:0 a.m.•32 views

CVE-2002-0752

CGIscript.net csMailto.cgi program exports feedback to a file that is accessible from the web document root, which could allow remote attackers to obtain sensitive information by directly accessing the file.

5CVSS6.2AI score0.00943EPSS