Filtered by vendor Ranson Johnson Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2000-0878 1 Ranson Johnson 1 Mailto Cgi Script 2024-11-20 N/A
The mailto CGI script allows remote attacker to execute arbitrary commands via shell metacharacters in the emailadd form field.
CVE-2000-0877 1 Ranson Johnson 1 Mailform 2024-11-20 N/A
mailform.pl CGI script in MailForm 2.0 allows remote attackers to read arbitrary files by specifying the file name in the XX-attach_file parameter, which MailForm then sends to the attacker.