Approved changes feed: RSS · Atom

cpe:2.3:a:matt_wright:formhandler.cgi:2.0:*:*:*:*:*:*:*

part: a version: 2.0 update: *

VendorMatt Wright (08875b86-26a9-5753-afa0-513ed2c74273)
ProductFormhandler.Cgi (23e1515c-af28-5522-8914-9e63a2941aaa)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-1999-1051 vulnerable 2026-06-08 04:44:58.195827 Details available
Default configuration in Matt Wright FormHandler.cgi script allows arbitrary directories to be used for attachments, and only restricts access to the /etc/ directory, which allows remote attackers to read arbitrary files via the reply_message_attach attachment parameter.
Published: 2001-09-12T04:00:00.000Z
Updated: 2024-08-01T16:55:29.477Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-1999-1050 vulnerable 2026-06-08 04:44:58.195576 Details available
Directory traversal vulnerability in Matt Wright FormHandler.cgi script allows remote attackers to read arbitrary files via (1) a .. (dot dot) in the reply_message_attach attachment parameter, or (2) by specifying the filename as a template.
Published: 2001-09-12T04:00:00.000Z
Updated: 2024-08-01T16:55:29.510Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.