cbcvebase.
CVE-2002-0918
published 2002-10-04

CVE-2002-0918: CGIScript.net csPassword.cgi leaks sensitive information such as the pathname of the server in debug messages that are presented when the script fails, which…

PriorityP416medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
3.50%
87.7th percentile
CGIScript.net csPassword.cgi leaks sensitive information such as the pathname of the server in debug messages that are presented when the script fails, which allows remote attackers to obtain the information via a "remove" option in the command parameter, which generates an error.

Affected

1 ranges
VendorProductVersion rangeFixed in
cgiscript.netcspassword
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.