CVE-2004-2588

high

Description

Intentional information leak in phpinfo.php in XMB (aka extreme message board) 1.9 beta (aka Nexus beta) allows remote attackers to obtain sensitive information such as the configuration of the web server and the PHP application.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/15656

https://docs.xmbforum2.com/index.php?title=Security_Issue_History

http://www.securityfocus.com/bid/9983

http://www.osvdb.org/4643

http://securitytracker.com/id?1009561

http://marc.info/?l=bugtraq&m=108032355905265&w=2

http://archives.neohapsis.com/archives/bugtraq/2004-03/0265.html

Details

Source: Mitre, NVD

Published: 2004-12-31

Updated: 2024-11-20

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity: High

Detections

Analytics