← CVECheck
HomeVulnerabilities

CVE-1999-1051 — MEDIUM severity vulnerability (Default configuration in Matt Wright FormHandler.cgi script)

Default configuration in Matt Wright FormHandler.cgi script allows arbitrary directories to be used for attachments, and only restricts access to the /etc/ directory, which allows remote attackers to read arbitrary files via the reply_message_attach attachment parameter.

CVE IDCVE-1999-1051
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:P/I:N/A:N
CWENVD-CWE-Other
StatusModified
Published1999-11-16
Last modified2026-04-16
DescriptionDefault configuration in Matt Wright FormHandler.cgi script allows arbitrary directories to be used for attachments, and only restricts access to the /etc/ directory, which allows remote attackers to read arbitrary files via the reply_message_attach attachment parameter.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →