CVE-2000-0287

Name of the Vulnerable Software and Affected Versions BizDB (affected versions not specified)

Description The issue allows remote attackers to execute arbitrary commands by injecting shell metacharacters into the dbname parameter of the bizdb-search.cgi script.

Recommendations For all affected versions, avoid using the dbname parameter in the bizdb-search.cgi script until a fix is available. As a temporary workaround, consider restricting access to the bizdb-search.cgi script to minimize the risk of exploitation.