PHPBBMod PHPInfo信息泄露漏洞

PHPBBMod PHPInfo信息泄露漏洞

漏洞ID 1107039 漏洞类型 信息泄露
发布时间 2002-10-10 更新时间 2002-12-31
图片[1]-PHPBBMod PHPInfo信息泄露漏洞-安全小百科CVE编号 CVE-2002-2349
图片[2]-PHPBBMod PHPInfo信息泄露漏洞-安全小百科CNNVD-ID CNNVD-200212-267
漏洞平台 PHP CVSS评分 5.0
|漏洞来源
https://www.exploit-db.com/exploits/21931
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200212-267
|漏洞详情
phpBBmod1.3.3版本phpinfo.php执行phpinfo函数。远程攻击者获得敏感环境信息。
|漏洞EXP
source: http://www.securityfocus.com/bid/5942/info

phpBBmod ships with a sample script (phpinfo.php) that may disclosure sensitive information to remote attackers. When this script is accessed, sensitive information about the underlying environment will be revealed.

This issue was reported in phpBBmod version 1.3.3. Other versions may also be affected. 

http://www.example.com/phpBB/phpinfo.php
|参考资料

来源:BID
名称:5942
链接:http://www.securityfocus.com/bid/5942
来源:XF
名称:phpbbmod-phpinfo-information-disclosure(10335)
链接:http://www.iss.net/security_center/static/10335.php

相关推荐: McMurtrey/Whitaker & Associates Cart32 3.0/3.1/3.5 – Denial of Service

McMurtrey/Whitaker & Associates Cart32 3.0/3.1/3.5 – Denial of Service 漏洞ID 1053474 漏洞类型 发布时间 2000-11-10 更新时间 2000-11-10 CVE编号…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享