Vulnerability Description
pollit.cgi in Poll It 2.01 and earlier uses data files that are located under the web document root, which allows remote attackers to access sensitive or private information.
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cgi-World | Poll It | 2.0 |
| Cgi-World | Poll It Pro | 1.6 |
References
- http://marc.info/?l=bugtraq&m=97236719315352&w=2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5794
- http://marc.info/?l=bugtraq&m=97236719315352&w=2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5794
FAQ
What is CVE-2000-1070?
CVE-2000-1070 is a vulnerability with a CVSS score of 5.0 (MEDIUM). pollit.cgi in Poll It 2.01 and earlier uses data files that are located under the web document root, which allows remote attackers to access sensitive or private information.
How severe is CVE-2000-1070?
CVE-2000-1070 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2000-1070?
Check the references section above for vendor advisories and patch information. Affected products include: Cgi-World Poll It, Cgi-World Poll It Pro.