Arbitrary Code Execution in csGuestbook.cgi

Arbitrary Code Execution in csGuestbook.cgi

CVE-2002-1750 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

csGuestbook.cgi in CGISCRIPT.NET csGuestbook 1.0 allows remote attackers to execute arbitrary Perl code via the setup parameter, which is processed by the Perl eval function.

Learn more about our Web Application Penetration Testing UK.