Default configuration in Matt Wright FormHandler.cgi script allows arbitrary directories to be used for attachments, and only restricts access to the /etc/ directory, which allows remote attackers to read arbitrary files via the reply_message_attach attachment parameter.

Directory traversal vulnerability in Matt Wright FormHandler.cgi script allows remote attackers to read arbitrary files via (1) a .. (dot dot) in the reply_message_attach attachment parameter, or (2) by specifying the filename as a template.

WWWBoard has a default username and default password.

WWWBoard stores encrypted passwords in a password file that is under the web root and thus accessible by remote attackers.

guestbook.pl cleanses user-inserted SSI commands by removing text between "<!--" and "-->" separators, which allows remote attackers to execute arbitrary commands when guestbook.pl is run on Apache 1.3.9 and possibly other versions, since Apache allows other closing sequences besides "-->".

Matt Wright's download.cgi 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the f parameter.

wwwboard allows a remote attacker to delete message board articles via a malformed argument.

The textcounter.pl by Matt Wright allows remote attackers to execute arbitrary commands via shell metacharacters.

FormMail CGI program can be used by web servers other than the host server that the program resides on.

FormMail CGI program allows remote execution of commands.