Vulnerabilities > CGI Script Center
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2001-02-12 | CVE-2001-0086 | Unspecified vulnerability in CGI Script Center Subscribe ME Lite 1.0/2.0 CGI Script Center Subscribe Me LITE 2.0 and earlier allows remote attackers to delete arbitrary mailing list users without authentication by directly calling subscribe.pl with the target address as a parameter. | 5.0 |
2000-12-19 | CVE-2000-0811 | Unspecified vulnerability in CGI Script Center Auction Weaver Auction Weaver 1.0 through 1.04 allows remote attackers to read arbitrary files via a .. | 5.0 |
2000-12-19 | CVE-2000-0810 | Unspecified vulnerability in CGI Script Center Auction Weaver Auction Weaver 1.0 through 1.04 does not properly validate the names of form fields, which allows remote attackers to delete arbitrary files and directories via a .. | 7.5 |
2000-10-20 | CVE-2000-0690 | Unspecified vulnerability in CGI Script Center Auction Weaver 1.0/1.02 Auction Weaver CGI script 1.02 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the fromfile parameter. | 10.0 |
2000-10-20 | CVE-2000-0689 | Unspecified vulnerability in CGI Script Center Account Manager Lite1.0/Pro1.0 Account Manager LITE does not properly authenticate attempts to change the administrator password, which allows remote attackers to gain privileges for the Account Manager by directly calling the amadmin.pl script with the setpasswd parameter. | 7.5 |
2000-10-20 | CVE-2000-0688 | Unspecified vulnerability in CGI Script Center Subscribe ME Lite 2.0 Subscribe Me LITE does not properly authenticate attempts to change the administrator password, which allows remote attackers to gain privileges for the Account Manager by directly calling the subscribe.pl script with the setpwd parameter. | 7.5 |
2000-10-20 | CVE-2000-0687 | Directory Traversal vulnerability in CGI Script Center Auction Weaver Auction Weaver CGI script 1.03 and earlier allows remote attackers to read arbitrary files via a .. | 10.0 |
2000-10-20 | CVE-2000-0686 | Directory Traversal vulnerability in CGI Script Center Auction Weaver Auction Weaver CGI script 1.03 and earlier allows remote attackers to read arbitrary files via a .. | 5.0 |