Avi Alkalay: Security Vulnerabilities
Avi Alkalay man-cgi script allows remote attackers to execute arbitrary code via shell metacharacters in the topic parameter.
CVSS Score
7.5
EPSS Score
0.042
Published
2005-09-28
Avi Alkalay notify program, dated 19 Aug 2001, allows remote attackers to execute arbitrary commands via shell metacharacters in the from parameter.
CVSS Score
7.5
EPSS Score
0.014
Published
2005-09-28
Avi Alkalay nslookup.cgi program, dated 16 June 2002, allows remote attackers to execute arbitrary commands via shell metacharacters in the query parameter.
CVSS Score
7.5
EPSS Score
0.038
Published
2005-09-28
Directory traversal vulnerability in Avi Alkalay contribute.cgi (aka contribute.pl), dated 16 Jun 2002, allows remote attackers to overwrite arbitrary files via ".." sequences in the contribdir variable.
CVSS Score
5.0
EPSS Score
0.004
Published
2005-09-28