CyberSec.Space Logo
Back to CVE Browser

CVE-2002-1466

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1540%
EPSS Percentile23.75th
PublishedApr 22, 2003
Last ModifiedApr 16, 2026

Vulnerability Description

CafeLog b2 Weblog Tool 2.06pre4, with allow_fopen_url enabled, allows remote attackers to execute arbitrary PHP code via the b2inc variable.

Affected Platforms (CPE)

πŸ“¦
Cafelog

B2

= 2.06pre4

References & Advisories

πŸ”— http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0071.html
πŸ”— http://online.securityfocus.com/archive/1/287228
πŸ”— http://archives.neohapsis.com/archives/vulnwatch/2002-q3/0071.html
πŸ”— http://online.securityfocus.com/archive/1/287228

Related Vulnerabilities

CVE-2002-000710.0

CGI.pl in Bugzilla before 2.14.1, when using LDAP, allows remote attackers to obtain an anonymous bind to the LDAP server via a re...

CVE-2002-001210.0

Vulnerabilities in a large number of SNMP implementations allow remote attackers to cause a denial of service or gain privileges v...

CVE-2002-000510.0

Buffer overflow in AOL Instant Messenger (AIM) 4.7.2480, 4.8.2616, and other versions allows remote attackers to execute arbitrary...

CVE-2002-001310.0

Vulnerabilities in the SNMPv1 request handling of a large number of SNMP implementations allow remote attackers to cause a denial ...