Lucene search

[email protected]NVD:CVE-2005-1616

HistoryMay 16, 2005 - 4:00 a.m.

CVE-2005-1616

2005-05-1604:00:00

[email protected]

web.nvd.nist.gov

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.6 Medium

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

80.7%

JSON

viewforum.php in Ultimate PHP Board (UPB) 1.8 through 1.9.6 allows remote attackers to obtain sensitive information via an invalid (1) id or possibly (2) postorder parameter, which reveals the path in an error message when a file can not be opened.

Affected configurations

NVD

Node

ultimate_php_boardultimate_php_boardMatch1.8

ultimate_php_boardultimate_php_boardMatch1.8.2

ultimate_php_boardultimate_php_boardMatch1.9

ultimate_php_boardultimate_php_boardMatch1.9.6

References

marc.info/?l=bugtraq&m=111600262424876&w=2

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.6 Medium

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

80.7%

JSON

Related for NVD:CVE-2005-1616

cve1 cvelist1 openvas1 nessus1