File tree Expand file tree Collapse file tree
Expand file tree Collapse file tree Original file line number Diff line number Diff line change 1- [id ]
2- ave_id = " AVE-1999-0033"
3- cve_id = " CVE-1999-0287"
4- aliases = [" CVE-1999-0287" ]
5-
61[basic ]
7- title = " Webcom CGI Guestbook (Wguest) 任意文件读取漏洞"
8- description = " Webcom 公司开发的 CGI Guestbook 程序(wguest.exe/rguest.exe)存在目录遍历漏洞。远程攻击者无需认证即可通过向 wguest.exe 或 rguest.exe 发送特制 HTTP 请求,利用 template 参数读取服务器上任意文本文件,例如 /cgi-bin/wguest.exe?template=c:\\ boot.ini 可读取系统配置文件,导致敏感信息泄露。该漏洞影响 Windows NT/95/98 平台上的 Web 服务器,CVSS v2 评分 7.5,危害等级高。"
9- severity = " HIGH"
10- score = 7.5
11- cvss_v2 = 7.5
12- cvss_v2_vector = " AV:N/AC:L/Au:N/C:P/I:P/A:P"
13- remediation = " 立即移除 Webcom CGI Guestbook 程序并停止使用该软件。由于软件开发商已不再维护此产品,建议迁移至其他安全的 CGI 留言本或采用现代 Web 应用替代。"
14- published = " 1999-04-09"
15- updated = " 2026-06-16"
2+ description = " "
3+ published = " "
4+ remediation = " Refer to vendor advisory and upgrade to fixed version."
5+ score = 0.0
6+ severity = " UNKNOWN"
167sources = [" cve" ]
17-
18- [affected ]
19- vendor = " Webcom"
20- product = " CGI Guestbook (Wguest)"
21-
22- [references ]
23- urls = [" https://marc.info/?l=ntbugtraq&m=92368828704896&w=2" ]
8+ title = " CVE-1999-0287 漏洞"
9+ updated = " "
2410
2511[exploit ]
26- poc_urls = []
2712exp_urls = []
13+ poc_urls = []
14+
15+ [id ]
16+ aliases = [" CVE-1999-0287" ]
17+ ave_id = " AVE-1999-0033"
18+ cve_id = " CVE-1999-0287"
2819
2920[meta ]
30- collected_at = " 2026-07-11T00:00:00 +00:00"
21+ collected_at = " 2026-07-10T22:45:12.502456676 +00:00"
3122status = " completed"
23+
24+ [references ]
25+ urls = []
You can’t perform that action at this time.
0 commit comments