CVE-2002-0215
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
16/05/2002
Last modified:
03/04/2025
Description
Agora.cgi 3.2r through 4.0 while in debug mode allows remote attackers to determine the full pathname of the agora.cgi file by requesting a non-existent .html file, which leaks the pathname in an error message.
Impact
Base Score 2.0
5.00
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:steve_kneizys:agora.cgi:3.2:*:*:*:*:*:*:* | ||
| cpe:2.3:a:steve_kneizys:agora.cgi:3.2a:*:*:*:*:*:*:* | ||
| cpe:2.3:a:steve_kneizys:agora.cgi:3.2b:*:*:*:*:*:*:* | ||
| cpe:2.3:a:steve_kneizys:agora.cgi:3.2c:*:*:*:*:*:*:* | ||
| cpe:2.3:a:steve_kneizys:agora.cgi:3.2d:*:*:*:*:*:*:* | ||
| cpe:2.3:a:steve_kneizys:agora.cgi:3.2e:*:*:*:*:*:*:* | ||
| cpe:2.3:a:steve_kneizys:agora.cgi:3.2f:*:*:*:*:*:*:* | ||
| cpe:2.3:a:steve_kneizys:agora.cgi:3.2g:*:*:*:*:*:*:* | ||
| cpe:2.3:a:steve_kneizys:agora.cgi:3.2h:*:*:*:*:*:*:* | ||
| cpe:2.3:a:steve_kneizys:agora.cgi:3.2i:*:*:*:*:*:*:* | ||
| cpe:2.3:a:steve_kneizys:agora.cgi:3.2j:*:*:*:*:*:*:* | ||
| cpe:2.3:a:steve_kneizys:agora.cgi:3.2ja:*:*:*:*:*:*:* | ||
| cpe:2.3:a:steve_kneizys:agora.cgi:3.2k:*:*:*:*:*:*:* | ||
| cpe:2.3:a:steve_kneizys:agora.cgi:3.2l:*:*:*:*:*:*:* | ||
| cpe:2.3:a:steve_kneizys:agora.cgi:3.2m:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page