← CVECheck
HomeVulnerabilities

CVE-2002-0920 — MEDIUM severity vulnerability (CGIScript.net csPassword.cgi stores usernames and unencrypte)

CGIScript.net csPassword.cgi stores usernames and unencrypted passwords in the password.cgi.tmp temporary file while modifying data, which could allow local users (and possibly remote attackers) to gain privileges by stealing the file before it has been processed.

CVE IDCVE-2002-0920
SeverityMEDIUM
CVSS score5.1
CVSS vectorAV:N/AC:H/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2002-10-04
Last modified2026-04-16
DescriptionCGIScript.net csPassword.cgi stores usernames and unencrypted passwords in the password.cgi.tmp temporary file while modifying data, which could allow local users (and possibly remote attackers) to gain privileges by stealing the file before it has been processed.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →