← CVECheck
HomeVulnerabilities

CVE-2002-0998 — MEDIUM severity vulnerability (Directory traversal vulnerability in cafenews.php for CARE 2)

Directory traversal vulnerability in cafenews.php for CARE 2002 before beta 1.0.02 allows remote attackers to read arbitrary files via .. (dot dot) sequences and null characters in the lang parameter, which is processed by a call to the include function.

CVE IDCVE-2002-0998
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:P/I:N/A:N
CWENVD-CWE-Other
StatusModified
Published2002-10-04
Last modified2026-04-16
DescriptionDirectory traversal vulnerability in cafenews.php for CARE 2002 before beta 1.0.02 allows remote attackers to read arbitrary files via .. (dot dot) sequences and null characters in the lang parameter, which is processed by a call to the include function.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →