CVE-2004-2732

Опубликовано: 31 дек. 2004

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

nbmember.cgi in Netbilling 2.0 allows remote attackers to obtain sensitive information via the cmd=test option, which can be leveraged to determine the access key.

Ссылки

http://securitytracker.com/id?1011881
http://web.archive.org/web/20041106200147/http://www.it-helpnet.de/bugless/bugs.php?mode=show&id=8&SID=
http://www.osvdb.org/10902
http://www.securityfocus.com/bid/11504
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/17865
http://securitytracker.com/id?1011881
http://web.archive.org/web/20041106200147/http://www.it-helpnet.de/bugless/bugs.php?mode=show&id=8&SID=
http://www.osvdb.org/10902
http://www.securityfocus.com/bid/11504
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/17865

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:netbilling:netbilling:2.0:*:*:*:*:*:*:*

EPSS

Процентиль: 85%

0.02463

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-78

Связанные уязвимости

GHSA-p894-4749-f3jh

github

почти 4 года назад