Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2005-4358

Опубликовано: 20 дек. 2005
Источник: ubuntu
Приоритет: untriaged
EPSS Низкий
CVSS2: 5

Описание

admin/admin_disallow.php in phpBB 2.0.18 allows remote attackers to obtain the installation path via a direct request with a non-empty setmodules parameter, which causes an invalid append_sid function call that leaks the path in an error message.

РелизСтатусПримечание
dapper

ignored

end of life
devel

DNE

edgy

not-affected

feisty

not-affected

gutsy

not-affected

hardy

not-affected

intrepid

not-affected

jaunty

DNE

karmic

DNE

upstream

released

2.0.19

Показывать по

Ссылки на источники

EPSS

Процентиль: 79%
0.01262
Низкий

5 Medium

CVSS2

Связанные уязвимости

nvd логотип

CVE-2005-4358

nvd
больше 19 лет назад

admin/admin_disallow.php in phpBB 2.0.18 allows remote attackers to obtain the installation path via a direct request with a non-empty setmodules parameter, which causes an invalid append_sid function call that leaks the path in an error message.

debian логотип

CVE-2005-4358

debian
больше 19 лет назад

admin/admin_disallow.php in phpBB 2.0.18 allows remote attackers to ob ...

github логотип

GHSA-wfq8-wvj5-jv7v

github
больше 3 лет назад

admin/admin_disallow.php in phpBB 2.0.18 allows remote attackers to obtain the installation path via a direct request with a non-empty setmodules parameter, which causes an invalid append_sid function call that leaks the path in an error message.

EPSS

Процентиль: 79%
0.01262
Низкий

5 Medium

CVSS2