3 matches found
CVE-2009-4465
DeluxeBB 1.3 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain user and configuration information, log data, and gain administrative access via a direct request to scripts in 1 templates/ including 2 templates/deluxe/admincp/...
CVE-2009-4465
DeluxeBB 1.3 is affected by multiple vulnerabilities related to improper access control that expose sensitive files under web root. The issues allow remote attackers to retrieve user/configuration data, logs, and potentially gain administrative access by requesting unprotected paths such as templ...
CVE-2009-4465
creationtimestamp| type| source ---|---|--- 2009-12-22 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/10598...