CGI RESCUE BloBee 1.20 and earlier allows remote attackers to write to arbitrary files, and consequently execute arbitrary code, via unspecified vectors.
CVSS 2.0
Severity: HIGH
Problem Type: CWE-20,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| cgi_rescue | blobee | 0.21 |
| cgi_rescue | blobee | 1.11 |
| cgi_rescue | blobee | 1.01 |
| cgi_rescue | blobee | 1.02 |
| cgi_rescue | blobee | * |
| cgi_rescue | blobee | 1.00 |
| cgi_rescue | blobee | 1.03 |
| cgi_rescue | blobee | 1.05 |
| cgi_rescue | blobee | 1.10 |
| cgi_rescue | blobee | 0.20 |
| cgi_rescue | blobee | 1.04 |