CVE-2004-2374

Опубликовано: 31 дек. 2004

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

BadBlue 2.4 allows remote attackers to obtain the location of the server installation path via a request for phptest.php, which includes the pathname in the source of the resulting HTML.

Ссылки

http://www.securityfocus.com/archive/1/355109
Exploit
Vendor Advisory
http://www.securityfocus.com/bid/9737
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/15311
http://www.securityfocus.com/archive/1/355109
Exploit
Vendor Advisory
http://www.securityfocus.com/bid/9737
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/15311

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:working_resources_inc.:badblue:2.40:*:*:*:*:*:*:*

EPSS

Процентиль: 87%

0.03447

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-rp94-24qm-cm4q

github

почти 4 года назад