Lucene search
MitreCVE-2002-2247HistoryOct 14, 2007 - 8:00 p.m.
CVE-2002-2247
2007-10-1420:00:00
CWE-16
mitre
web.nvd.nist.gov
40
mambo site server
phpinfo.php
remote attackers
sensitive information
cve-2002-2247
nvd
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.6
Confidence
Low
EPSS
0.008
Percentile
81.9%
The administrator/phpinfo.php script in Mambo Site Server 4.0.11 allows remote attackers to obtain sensitive information such as the full web root path via phpinfo.php, which calls the phpinfo function.
Affected configurations
Node
mambomambo_site_serverMatch4.0.11
| Vendor | Product | Version | CPE |
|---|---|---|---|
| mambo | mambo_site_server | 4.0.11 | cpe:2.3:a:mambo:mambo_site_server:4.0.11:*:*:*:*:*:*:* |
Related
exploitdb
exploitdb
Mambo Site Server 4.0.11 - 'PHPInfo.php' Information Disclosure
2002-12-12 00:00:00
cvelist
cvelist
CVE-2002-2247
2007-10-14 20:00:00
nvd
nvd
CVE-2002-2247
2002-12-31 05:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.6
Confidence
Low
EPSS
0.008
Percentile
81.9%
Related for CVE-2002-2247