CVE-2002-0710
CVE-2002-0710 describes a directory traversal in Rod Clark’s sendform.cgi, affecting versions 1.44 and earlier. An attacker can specify files via the BlurbFilePath parameter to read arbitrary server files (e.g., /etc/passwd) with the web server’s privileges over the network. The vulnerability is ...