CVE-2002-0924

High

7.5/10

Summary

CGIScript.net csNews.cgi allows remote authenticated users to execute arbitrary Perl code via terminating quotes and metacharacters in text fields of the "Advanced Settings" capability.

Access Complexity: LOW
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: PARTIAL
Confidentiality Impact: PARTIAL
Availability Impact: PARTIAL

References

Advisory Timeline

Published Oct 04, 2002

CVE-2002-0924

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS