Simpgb Security Vulnerabilities and Issues — Simpgb CVE List

Lucene search

Boesch-itSimpgb

2 matches found

CVE•added 2007/09/27 7:17 p.m.•36 views

CVE-2007-5130

SimpGB 1.46.02 allows remote attackers to obtain sensitive information via (1) an invalid lang parameter to admin/index.php or (2) a direct request to admin/trailer.php, which reveals the path in various error messages.

4.3CVSS6.2AI score0.00357EPSS

CVE•added 2007/09/27 7:17 p.m.•27 views

CVE-2007-5129

SimpGB 1.46.02 stores sensitive information under the web root with insufficient access control, which allows remote attackers to (1) obtain sensitive configuration information via a direct request for admin/cfginfo.php; and (2) download arbitrary .inc files via a direct request, as demonstrated by...

5CVSS6.5AI score0.0065EPSS