2 matches found
CVE-2003-0243
CVE-2003-0243 affects Happycgi Happymall 4.3/4.4. The normal_html.cgi and member_html.cgi scripts pass user input to shell operations without proper filtering, enabling remote arbitrary OS command execution via crafted file parameters. Impact: remote code execution with web server privileges. Exp...
CVE-2003-0277
The CVE-2003-0277 issue affects Happycgi Happymall (HappyMall) versions 4.3 and 4.4, where a directory traversal vulnerability is exposed in the normal_html.cgi script. The underlying problem is exploitation of .. (dot dot) sequences in the file parameter, enabling remote attackers to read arbitr...