Remote Code Execution in Scripts For Educators MakeBook 2.2 CGI Program

Remote Code Execution in Scripts For Educators MakeBook 2.2 CGI Program

CVE-2002-0948 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Scripts For Educators MakeBook 2.2 CGI program allows remote attackers to execute script as other visitors, or execute server-side includes (SSI) as the web server, via the (1) Name or (2) Email parameters, which are not properly filtered.

Learn more about our Web App Pen Testing.