CVE-2002-2033

FAQManager’s FAQManager CGI (faqmanager.cgi) is affected by CVE-2002-2033. The vulnerability occurs in version 2.2.5 and earlier, where an attacker can read arbitrary files on the web server by supplying a filename in the toc parameter with a trailing null character (%00). This is a web-applicati...