ID CVE-2005-2296
Type cve
Reporter cve@mitre.org
Modified 2016-10-18T03:26:00
Description
YabbSE 1.5.5c allows remote attackers to obtain sensitive information via a direct request to ssi_examples.php, which reveals the path.
{"id": "CVE-2005-2296", "bulletinFamily": "NVD", "title": "CVE-2005-2296", "description": "YabbSE 1.5.5c allows remote attackers to obtain sensitive information via a direct request to ssi_examples.php, which reveals the path.", "published": "2005-07-18T04:00:00", "modified": "2016-10-18T03:26:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-2296", "reporter": "cve@mitre.org", "references": ["http://marc.info/?l=bugtraq&m=112137300014760&w=2"], "cvelist": ["CVE-2005-2296"], "type": "cve", "lastseen": "2019-05-29T18:08:14", "history": [], "edition": 1, "hashmap": [{"key": "affectedSoftware", "hash": "48ad58f5def8e66e6a48039bacf03850"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "c957b0db46b4efb9d13812a95f4127c4"}, {"key": "cpe23", "hash": "488541773d810ec03de34d4f97e4cf7c"}, {"key": "cvelist", "hash": "6230751b43cae3054f4be7974ba45a75"}, {"key": "cvss", "hash": "a89198c45ce87f7ec9735a085150b708"}, {"key": "cvss2", "hash": "f30109dfdbfbf783c0b61792a6b2c20a"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cwe", "hash": "78a7a5cbaf09985c14389298e454e7db"}, {"key": "description", "hash": "83403ff392e32533296727778b183fce"}, {"key": "href", "hash": "2a12ee9632403bc1375e350ae0c6f55b"}, {"key": "modified", "hash": "e0a380ca669d5354b62c66f7f02a351c"}, {"key": "published", "hash": "7bb3352a30269a638886112dcb9a19e7"}, {"key": "references", "hash": "d843d6db8680d62aed2ac75b5be2b176"}, {"key": "reporter", "hash": "444c2b4dda4a55437faa8bef1a141e84"}, {"key": "title", "hash": "0d32a777a7c06a4d8c189e90f869adec"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "f11bf9ceee8406fc7a3cd8e806e5e1d08eab89f770036a41ea35764fb4bcfcab", "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "osvdb", "idList": ["OSVDB:18242"]}], "modified": "2019-05-29T18:08:14"}, "score": {"value": 5.3, "vector": "NONE", "modified": "2019-05-29T18:08:14"}, "vulnersScore": 5.3}, "objectVersion": "1.3", "cpe": ["cpe:/a:yabb:yabb:1.5.5c"], "affectedSoftware": [{"name": "yabb yabb", "operator": "eq", "version": "1.5.5c"}], "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "cpe23": ["cpe:2.3:a:yabb:yabb:1.5.5c:*:second_edition:*:*:*:*:*"], "cwe": ["NVD-CWE-Other"]}
{"osvdb": [{"lastseen": "2017-04-28T13:20:14", "bulletinFamily": "software", "description": "## Manual Testing Notes\nhttp://[target]/pathtoforum/ssi_examples.php\n## References:\nVendor URL: http://sourceforge.net/projects/yabbse/\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-07/0221.html\n[CVE-2005-2296](https://vulners.com/cve/CVE-2005-2296)\n", "modified": "2005-07-14T04:00:26", "published": "2005-07-14T04:00:26", "href": "https://vulners.com/osvdb/OSVDB:18242", "id": "OSVDB:18242", "type": "osvdb", "title": "YaBB SE ssi_examples.php Direct Request Path Disclosure", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}]}
