CVE-2003-1555

Опубликовано: 31 дек. 2003

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

ScozNet ScozBook 1.1 BETA allows remote attackers to obtain sensitive information via an invalid PG parameter in view.php, which reveals the installation path in an error message.

Ссылки

http://secunia.com/advisories/8476
http://securityreason.com/securityalert/3781
http://www.securityfocus.com/archive/1/316747/30/25280/threaded
http://www.securityfocus.com/bid/7236
Exploit
http://www.securitytracker.com/id?1006413
https://exchange.xforce.ibmcloud.com/vulnerabilities/11659
http://secunia.com/advisories/8476
http://securityreason.com/securityalert/3781
http://www.securityfocus.com/archive/1/316747/30/25280/threaded
http://www.securityfocus.com/bid/7236
Exploit
http://www.securitytracker.com/id?1006413
https://exchange.xforce.ibmcloud.com/vulnerabilities/11659

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:scoznet:scozbook:1.1_beta:*:*:*:*:*:*:*

EPSS

Процентиль: 88%

0.04209

Низкий

5 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-8qrx-6m7g-9m6f

github

больше 3 лет назад