CVE-2000-0282
— NVD-CWE-Other
- Published: 2000-04-12T04:00:00.000
- Last modified: 2025-04-03T01:03:51.193
- CWE: NVD-CWE-Other
CVE-2000-0282 — TalentSoft webpsvr daemon in the Web+ shopping cart application allows remote attackers to read arbitrary files via a .. (dot dot) attack on the webplus CGI program. [Weakness: NVD-CWE-Other]
Related CVE by CWE
No related CWE found.
Top CVE for Vendor
No vendor taxonomy on this entry.
Recently Exploited Similar Vulnerabilities
No recent KEV-listed items for this vendor/product.
TalentSoft webpsvr daemon in the Web+ shopping cart application allows remote attackers to read arbitrary files via a .. (dot dot) attack on the webplus CGI program.
🧠 Explainer: What this vulnerability means
Summary: The issue in the product by the vendor (CWE: unspecified) may enable attacks.
Impact: Attackers could gain unauthorized access, execute code, or disrupt services.
Mitigation: Upgrade immediately to the remediated release and follow vendor hardening guidance.
No vendor/product data yet.
- ftp://ftp.talentsoft.com/Download/Webplus/Unix/Patches/Webplus46p%20Read%20me.html []
- http://archives.neohapsis.com/archives/bugtraq/2000-04/0050.html [Exploit, Patch, Vendor Advisory]
- http://www.securityfocus.com/bid/1102 [Exploit, Patch, Vendor Advisory]
- ftp://ftp.talentsoft.com/Download/Webplus/Unix/Patches/Webplus46p%20Read%20me.html []
- http://archives.neohapsis.com/archives/bugtraq/2000-04/0050.html [Exploit, Patch, Vendor Advisory]
- http://www.securityfocus.com/bid/1102 [Exploit, Patch, Vendor Advisory]