CVE-2004-2061 — CRITICAL severity vulnerability (RiSearch 1.0.01 and RiSearch Pro 3.2.06 allows remote attack)
RiSearch 1.0.01 and RiSearch Pro 3.2.06 allows remote attackers to use the show.pl script as an open proxy, or read arbitrary local files, by setting the url parameter to a (1) http://, (2) ftp://, or (3) file:// URL.
| CVE ID | CVE-2004-2061 |
|---|---|
| Severity | CRITICAL |
| CVSS score | 9.8 |
| CVSS vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
| CWE | CWE-918 |
| Status | Modified |
| Published | 2004-07-27 |
| Last modified | 2026-04-16 |
| Description | RiSearch 1.0.01 and RiSearch Pro 3.2.06 allows remote attackers to use the show.pl script as an open proxy, or read arbitrary local files, by setting the url parameter to a (1) http://, (2) ftp://, or (3) file:// URL. |
| Source | NIST National Vulnerability Database |
🔍 Search all vulnerabilities →
$999/mo
Try CVECheck →