RSS   Vulnerabilities for 'Include.cgi'   RSS

2005-04-25
 
CVE-2005-1297

 

 
Cross-site scripting (XSS) vulnerability in the include.cgi script allows remote attackers to inject arbitrary web script or HTML via the argument.

 
 
CVE-2005-1296

 

 
include.cgi script allows remote attackers to execute arbitrary commands via shell metacharacters in the argument.

 
 
CVE-2005-1295

 

 
include.cgi script allows remote attackers to read arbitrary files via a full pathname in the argument.

 


Copyright 2024, cxsecurity.com

 

Back to Top