Vulnerabilities > CVE-2005-1298 - Remote Security vulnerability in Inserter.Cgi

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
inserter-cgi
NVD
Published: 2005-04-25
Updated: 2016-10-18

Summary

The inserter.cgi script allows remote attackers to read arbitrary files via a full pathname in the argument.

Vulnerable Configurations

Part Description Count
Application
Inserter.Cgi
1

References