5
CVE-2002-1087
- EPSS 1.67%
- Veröffentlicht 04.10.2002 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:58:42
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginThe scripts (1) createdir.php, (2) removedir.php and (3) uploadfile.php for ezContents 1.41 and earlier do not check credentials, which allows remote attackers to create or delete directories and upload files via a direct HTTP POST request.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Visualshapers ≫ Ezcontents Version <= 1.41
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.67% | 0.738 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|
http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0040.html
http://online.securityfocus.com/archive/1/284229