CVE-2000-1166 in Twiginformazioni

Riassunto

di MITRE

Twig webmail system does not properly set the "vhosts" variable if it is not configured on the site, which allows remote attackers to insert arbitrary PHP (PHP3) code by specifying an alternate vhosts as an argument to the index.php3 program.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Divulgazione

09/01/2001

Moderazione

accettato

Voce

VDB-16322

CPE

pronto

CWE

CWE-269 (confermato)

CVSS

7.3 (VulDB)

EPSS

0.01630

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2000-1166
NVD	https://nvd.nist.gov/vuln/detail/CVE-2000-1166
CVE Details	https://www.cvedetails.com/cve/CVE-2000-1166/

◂ Precedente Visione D'ensemble Il prossimo ▸

Want to know what is going to be exploited?

We predict KEV entries!