6.7 Medium
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
80.1%
ViewVC before 1.0.5 includes “all-forbidden” files within search results that list CVS or Subversion (SVN) commits, which allows remote attackers to obtain sensitive information.
bugzilla.redhat.com/show_bug.cgi?id=438854
nvd.nist.gov/vuln/detail/CVE-2008-1290
www.cve.org/CVERecord?id=CVE-2008-1290