Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbBlack Watch LabsEDB-ID:19903
HistoryMay 05, 2000 - 12:00 a.m.

Gossamer Threads DBMan 2.0.4 - DBMan Information Leakage

2000-05-0500:00:00
Black Watch Labs
www.exploit-db.com
21

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/1178/info

Requesting an invalid database file from a web server implementing Gossamer Threads DBMan scripts will return a CGI error message containing environmental variables to a remote user without any authorization. The parameters displayed include the local document root path, server administrator account name, web server software, platform, etc.

http://target/scripts/dbman/db.cgi?db=invalid-db

Related

openvas 2
cve 1
nvd 1
cvelist 1
openvas
openvas
DBMan CGI server information leakage
2005-11-03 00:00:00
DBMan CGI server information leakage
2005-11-03 00:00:00
cve
cve
CVE-2000-0381
2000-07-12 04:00:00
nvd
nvd
CVE-2000-0381
2000-05-05 04:00:00
cvelist
cvelist
CVE-2000-0381
2000-07-12 04:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:19903
openvas2cve1nvd1cvelist1