Include.cgi : Security Vulnerabilities, CVEs, CVSS score >= 1
Cross-site scripting (XSS) vulnerability in the include.cgi script allows remote attackers to inject arbitrary web script or HTML via the argument.
Max CVSS
6.8
EPSS Score
0.43%
Published
2005-04-25
Updated
2016-10-18
include.cgi script allows remote attackers to execute arbitrary commands via shell metacharacters in the argument.
Max CVSS
7.5
EPSS Score
0.46%
Published
2005-04-25
Updated
2016-10-18
include.cgi script allows remote attackers to read arbitrary files via a full pathname in the argument.
Max CVSS
7.5
EPSS Score
0.72%
Published
2005-04-25
Updated
2016-10-18
3 vulnerabilities found