CVE-2003-1548

Опубликовано: 31 дек. 2003

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

MyABraCaDaWeb 1.0.2 and earlier allows remote attackers to obtain sensitive information via an invalid IDAdmin or other parameter, which reveals the installation path in an error message.

Ссылки

http://secunia.com/advisories/8320
Vendor Advisory
http://securityreason.com/securityalert/3717
http://www.securityfocus.com/archive/1/315317/30/25460/threaded
http://www.securityfocus.com/bid/7126
Exploit
http://www.securitytracker.com/id?1006308
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/11556
http://secunia.com/advisories/8320
Vendor Advisory
http://securityreason.com/securityalert/3717
http://www.securityfocus.com/archive/1/315317/30/25460/threaded
http://www.securityfocus.com/bid/7126
Exploit
http://www.securitytracker.com/id?1006308
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/11556

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:myabracadaweb:myabracadaweb:*:*:*:*:*:*:*:*

Версия до 1.0.2 (включая)

EPSS

Процентиль: 91%

0.06423

Низкий

5 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-64fp-99wr-qmj3

github

больше 3 лет назад