CVE-2002-0215

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
16/05/2002
Last modified:
03/04/2025

Description

Agora.cgi 3.2r through 4.0 while in debug mode allows remote attackers to determine the full pathname of the agora.cgi file by requesting a non-existent .html file, which leaks the pathname in an error message.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:steve_kneizys:agora.cgi:3.2:*:*:*:*:*:*:*
cpe:2.3:a:steve_kneizys:agora.cgi:3.2a:*:*:*:*:*:*:*
cpe:2.3:a:steve_kneizys:agora.cgi:3.2b:*:*:*:*:*:*:*
cpe:2.3:a:steve_kneizys:agora.cgi:3.2c:*:*:*:*:*:*:*
cpe:2.3:a:steve_kneizys:agora.cgi:3.2d:*:*:*:*:*:*:*
cpe:2.3:a:steve_kneizys:agora.cgi:3.2e:*:*:*:*:*:*:*
cpe:2.3:a:steve_kneizys:agora.cgi:3.2f:*:*:*:*:*:*:*
cpe:2.3:a:steve_kneizys:agora.cgi:3.2g:*:*:*:*:*:*:*
cpe:2.3:a:steve_kneizys:agora.cgi:3.2h:*:*:*:*:*:*:*
cpe:2.3:a:steve_kneizys:agora.cgi:3.2i:*:*:*:*:*:*:*
cpe:2.3:a:steve_kneizys:agora.cgi:3.2j:*:*:*:*:*:*:*
cpe:2.3:a:steve_kneizys:agora.cgi:3.2ja:*:*:*:*:*:*:*
cpe:2.3:a:steve_kneizys:agora.cgi:3.2k:*:*:*:*:*:*:*
cpe:2.3:a:steve_kneizys:agora.cgi:3.2l:*:*:*:*:*:*:*
cpe:2.3:a:steve_kneizys:agora.cgi:3.2m:*:*:*:*:*:*:*