CVE-2003-0277

Happycgi.com Happymall <4.4 - Path Traversal

Title source: llm

Description

Directory traversal vulnerability in normal_html.cgi in Happycgi.com Happymall 4.3 and 4.4 allows remote attackers to read arbitrary files via .. (dot dot) sequences in the file parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Julio Cesar · textwebappscgi

https://www.exploit-db.com/exploits/22592

View Code ZIP pw:eip

References (3)

Core 3

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/11987

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/7559

Mailing List mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=105276130814262&w=2

Scores

EPSS 0.0378

EPSS Percentile 88.1%

Details

Status published

Products (2)

happycgi/happymall 4.3

happycgi/happymall 4.4

Published Jun 16, 2003

Tracked Since Feb 18, 2026