Cgiecho
Vulnerabilities
3
Known exploited
0
Max CVSS
7.8
Top EPSS
0.0256
Severity breakdown
Critical
0
High
1
Medium
2
Low
0
Also matched as (raw): cgiecho,cgiemail
Top vulnerabilities
CVE-2017-5613Format string vulnerability in cgiemail and cgiecho allows remote attackers to execute arbitrary code via format string specifiers in a template file.
CVE-2017-5616Cross-site scripting (XSS) vulnerability in cgiemail and cgiecho allows remote attackers to inject arbitrary web script or HTML via the addendum parameter.
CVE-2017-5615cgiemail and cgiecho allow remote attackers to inject HTTP headers via a newline character in the redirect location.