Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2000-0208

The htdig (ht://Dig) CGI program htsearch allows remote attackers to read arbitrary files by enclosing the file name with backticks (`) in parameters to htsearch.

  • Published: Feb 29, 2000
  • Updated: Apr 13, 2023
  • CVE: CVE-2000-0208
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:P/I:N/A:N

No CWE or OWASP classifications available.

Software From Fixed in
htdig / htdig 3.2.0b1 3.2.0b1.x
htdig / htdig 3.1.4 3.1.4.x
htdig / htdig 3.1.3 3.1.3.x
htdig / htdig 3.1.1 3.1.1.x
htdig / htdig 3.1.2 3.1.2.x