7.5
CVE-2005-1616
- EPSS 1.37%
- Veröffentlicht 16.05.2005 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:13:22
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Loginviewforum.php in Ultimate PHP Board (UPB) 1.8 through 1.9.6 allows remote attackers to obtain sensitive information via an invalid (1) id or possibly (2) postorder parameter, which reveals the path in an error message when a file can not be opened.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Ultimate Php Board ≫ Ultimate Php Board Version1.8
Ultimate Php Board ≫ Ultimate Php Board Version1.8.2
Ultimate Php Board ≫ Ultimate Php Board Version1.9
Ultimate Php Board ≫ Ultimate Php Board Version1.9.6
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.37% | 0.683 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://marc.info/?l=bugtraq&m=111600262424876&w=2