CVE-2002-0446
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2002-0446
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
categorie.php3 in Black Tie Project (BTP) 0.4b through 0.5b allows remote attackers to determine the absolute path of the web server via an invalid category ID (cid) parameter, which leaks the pathname in an error message.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Black Tie Project存在路径泄露漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Black Tie Porject (BTP)是一款基于PHP的系统构建程序,设计用来模块化构建系统,允许用户方便和可定制化的增加额外模块。BTP是一款法语项目。 Black Tie Porject (BTP)对不存在的页面请求处理不正确,可导致wwwroot目录路径泄露。 远程用户可以提交一个不存在的页面给Black Tie Porject (BTP)服务程序,使Black Tie Porject (BTP)返回错误信息并显示wwwroot目录的绝对路径。 此信息泄露可帮助攻击者进一步对系统进行攻击。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2002-0446
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2002-0446
Please Login to view more intelligence information
Same Patch Batch · n/a · 2002-06-11 · 167 CVEs total
| CVE-2002-0549 | Anthill存在跨站脚本执行漏洞 | |
| CVE-2002-0530 | Microsoft Internet Explorer BR549.DLL ActiveX控件缓冲区溢出漏洞(MS03-032) | |
| CVE-2002-0533 | PHPBB BBCode导致拒绝服务攻击漏洞 | |
| CVE-2002-0534 | PostBoard BBCode存在拒绝服务攻击漏洞 | |
| CVE-2002-0535 | PostBoard IMG标记脚本执行漏洞 | |
| CVE-2002-0537 | StepWeb搜索引擎管理员页面访问漏洞 | |
| CVE-2002-0540 | Nortel CVX 1800多服务访问网关存在默认SNMP口令漏洞 | |
| CVE-2002-0541 | Tivoli Storage Manager提交用户名过长导致缓冲溢出漏洞 | |
| CVE-2002-0544 | Abyss Web Server明文管理绕过漏洞 | |
| CVE-2002-0547 | Nullsoft Winamp Minibrowser ID3v2缓冲区溢出漏洞 | |
| CVE-2002-0548 | Anthill postbug.php认证可绕过漏洞 | |
| CVE-2002-0555 | IBM Informix Web DataBlade SQL查询语句HTML条目自动解码漏洞 | |
| CVE-2002-0559 | Oracle 9iAS PL/SQL Apache模块存在多个缓冲区溢出漏洞 | |
| CVE-2002-0558 | TYPSoft FTP Server目录遍历漏洞 | |
| CVE-2002-0557 | OpenBSD rexecd、rshd、atrun BSD错误认证实现漏洞 | |
| CVE-2002-0556 | Quik-Serv Web服务器任意文件泄露漏洞 | |
| CVE-2002-0552 | Melange聊天系统melange.conf配置行处理存在缓冲区溢出漏洞 | |
| CVE-2002-0550 | Dynamic Guestbook远程执行任意命令漏洞 | |
| CVE-2002-0551 | Dynamic Guestbook存在跨站脚本执行漏洞 | |
| CVE-2002-0529 | HP Photosmart Mac OS X打印驱动程序文件权限不正确漏洞 |
Showing top 20 of 167 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8196
JeecgBoot mLogin Endpoint LoginController.java authorization - CVE-2026-8195
JeecgBoot SVG File CommonController.java cross site scriptin - CVE-2026-8194
osTicket Dispatcher class.dispatcher.php cross-site request - CVE-2026-8193
Akaunting Invoice PDF Rendering dompdf.php server-side reque - CVE-2026-8186
Open5GS NF client.c ogs_sbi_client_send_via_scp_or_sepp out-
V. Comments for CVE-2002-0446
No comments yet