Exploitation Summary
EIP tracks 1 public exploit for CVE-2000-0381. PoCs published by Black Watch Labs.
AI-analyzed exploit summary The exploit demonstrates an information leakage vulnerability in Gossamer Threads DBMan scripts by requesting an invalid database file, which returns CGI error messages containing sensitive environmental variables without authentication.
Description
The Gossamer Threads DBMan db.cgi CGI script allows remote attackers to view environmental variables and setup information by referencing a non-existing database in the db parameter.
Exploits (1)
The exploit demonstrates an information leakage vulnerability in Gossamer Threads DBMan scripts by requesting an invalid database file, which returns CGI error messages containing sensitive environmental variables without authentication.