MidnightBSD

Advisories for markus_triska

CVE-2000-1171 MEDIUM

Directory traversal vulnerability in cgiforum.pl script in CGIForum 1.0 allows remote attackers to ready arbitrary files via a .. (dot dot) attack in the "thesection" parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
markus_triska cgiforum 1.0
CVE-2002-1736 MEDIUM

Unknown vulnerability in CGINews before 1.06 allow remote attackers to read arbitrary files via "unfiltered user input."

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
markus_triska cginews *
CVE-2002-1902 MEDIUM

CGIForum 1.0 through 1.05 allows remote attackers to cause a denial of service (infinite recursion) by creating a message board post that is a child of an outdated parent.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
markus_triska cgiforum 1.0
markus_triska cgiforum 1.0.5
markus_triska cgiforum 1.0.3
markus_triska cgiforum 1.0.4
markus_triska cgiforum 1.0.1
markus_triska cgiforum 1.0.2