CVE-1999-1437

Name of the Vulnerable Software and Affected Versions ePerl version 2.2.12

Description The issue allows remote attackers to read arbitrary files and possibly execute certain commands by specifying a full pathname of the target file as an argument to "bar.phtml".

Recommendations For ePerl version 2.2.12, consider restricting access to the bar.phtml file until a patch is available. Avoid using full pathnames as arguments to bar.phtml to minimize the risk of exploitation.