ID OSVDB:17929 Type osvdb Reporter G B(gb.network@gmail.com) Modified 2005-07-13T18:45:28
Description
Vulnerability Description
oaboard contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker makes a direct request to the info.php script, which will disclose the full installation path resulting in a loss of confidentiality.
Solution Description
Currently, there are no known upgrades, patches, or workarounds available to correct this issue.
Short Description
oaboard contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker makes a direct request to the info.php script, which will disclose the full installation path resulting in a loss of confidentiality.
{"type": "osvdb", "published": "2005-07-13T18:45:28", "href": "https://vulners.com/osvdb/OSVDB:17929", "hashmap": [{"key": "affectedSoftware", "hash": "82da4c5baebd176238a71ca6f09cd07e"}, {"key": "bulletinFamily", "hash": "f9fa10ba956cacf91d7878861139efb9"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "8cd4821cb504d25572038ed182587d85"}, {"key": "description", "hash": "f4fff36a86f4bff69701ce6c7d1aa279"}, {"key": "href", "hash": "b1a696afe056b117b31ccb60fa00d81b"}, {"key": "modified", "hash": "ff4ebd1e17640c1380a95008ba5b5897"}, {"key": "objectVersion", "hash": "56765472680401499c79732468ba4340"}, {"key": "published", "hash": "ff4ebd1e17640c1380a95008ba5b5897"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "224472d336c153126c8173695af9a87a"}, {"key": "title", "hash": "3fe0f720c37814f52544a5b5cf1a7e16"}, {"key": "type", "hash": "1327ac71f7914948578f08c54f772b10"}], "bulletinFamily": "software", "cvss": {"vector": "NONE", "score": 0.0}, "viewCount": 0, "history": [], "edition": 1, "objectVersion": "1.2", "reporter": "G B(gb.network@gmail.com)", "title": "oaboard info.php Direct Request Path Disclosure", "affectedSoftware": [{"operator": "eq", "version": "1.0", "name": "oaboard"}], "enchantments": {"score": {"value": -0.1, "vector": "NONE", "modified": "2017-04-28T13:20:14"}, "dependencies": {"references": [], "modified": "2017-04-28T13:20:14"}, "vulnersScore": -0.1}, "references": [], "id": "OSVDB:17929", "hash": "56547d10f9257713e3e3118ab99b9cbb3ae479ee512e3b046d975972b396abc2", "lastseen": "2017-04-28T13:20:14", "cvelist": [], "modified": "2005-07-13T18:45:28", "description": "## Vulnerability Description\noaboard contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker makes a direct request to the info.php script, which will disclose the full installation path resulting in a loss of confidentiality.\n## Solution Description\nCurrently, there are no known upgrades, patches, or workarounds available to correct this issue.\n## Short Description\noaboard contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker makes a direct request to the info.php script, which will disclose the full installation path resulting in a loss of confidentiality.\n## Manual Testing Notes\nhttp://[target]/oaboard/modules/info.php\n## References:\nVendor URL: http://oaboard.myserver.at/\nSecurity Tracker: 1014467\n[Related OSVDB ID: 17924](https://vulners.com/osvdb/OSVDB:17924)\n[Related OSVDB ID: 17927](https://vulners.com/osvdb/OSVDB:17927)\n[Related OSVDB ID: 17931](https://vulners.com/osvdb/OSVDB:17931)\n[Related OSVDB ID: 17926](https://vulners.com/osvdb/OSVDB:17926)\n[Related OSVDB ID: 17930](https://vulners.com/osvdb/OSVDB:17930)\n[Related OSVDB ID: 17932](https://vulners.com/osvdb/OSVDB:17932)\n[Related OSVDB ID: 17925](https://vulners.com/osvdb/OSVDB:17925)\n[Related OSVDB ID: 17928](https://vulners.com/osvdb/OSVDB:17928)\n"}