← CVECheck
HomeVulnerabilities

CVE-2002-1087 — MEDIUM severity vulnerability (The scripts (1) createdir.php, (2) removedir.php and (3) upl)

The scripts (1) createdir.php, (2) removedir.php and (3) uploadfile.php for ezContents 1.41 and earlier do not check credentials, which allows remote attackers to create or delete directories and upload files via a direct HTTP POST request.

CVE IDCVE-2002-1087
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:N/I:P/A:N
CWENVD-CWE-Other
StatusModified
Published2002-10-04
Last modified2026-04-16
DescriptionThe scripts (1) createdir.php, (2) removedir.php and (3) uploadfile.php for ezContents 1.41 and earlier do not check credentials, which allows remote attackers to create or delete directories and upload files via a direct HTTP POST request.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →