exploitDog

CVE-2007-1192

Опубликовано: 02 мар. 2007

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Thomas R. Pasawicz HyperBook Guestbook 1.30 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download an admin password hash via a direct request for data/gbconfiguration.dat.

Ссылки

http://downloads.securityfocus.com/vulnerabilities/exploits/22754.py
Exploit
http://osvdb.org/33868
http://secunia.com/advisories/24392
http://www.securityfocus.com/bid/22754
Exploit
Vendor Advisory
http://downloads.securityfocus.com/vulnerabilities/exploits/22754.py
Exploit
http://osvdb.org/33868
http://secunia.com/advisories/24392
http://www.securityfocus.com/bid/22754
Exploit
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:hyperbook:guestbook:1.30:*:*:*:*:*:*:*

EPSS

Процентиль: 87%

0.03573

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-v582-ghvh-r55g

github

почти 4 года назад

Thomas R. Pasawicz HyperBook Guestbook 1.30 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download an admin password hash via a direct request for data/gbconfiguration.dat.

EPSS

Процентиль: 87%

0.03573

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other