7.5
CVE-2003-1383
- EPSS 2.16%
- Veröffentlicht 31.12.2003 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:04:03
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginWEB-ERP 0.1.4 and earlier allows remote attackers to obtain sensitive information via an HTTP request for the logicworks.ini file, which contains the MySQL database username and password.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Logicworks ≫ Web Erp Version <= 0.1.4
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.16% | 0.798 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://securityreason.com/securityalert/3257
http://www.securityfocus.com/archive/1/313575
http://www.securityfocus.com/bid/6996
https://exchange.xforce.ibmcloud.com/vulnerabilities/11443