Vulnerability Details CVE-2003-1550
XOOPS 2.0, and possibly earlier versions, allows remote attackers to obtain sensitive information via an invalid xoopsOption parameter, which reveals the installation path in an error message.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.062
EPSS Ranking 90.4%
CVSS Severity
CVSS v2 Score 5.0
References
- http://marc.info/?l=bugtraq&m=104820295115420&w=2
- http://marc.info/?l=bugtraq&m=104887510828106&w=2
- http://secunia.com/advisories/8353
- http://www.security-corporation.com/index.php?id=advisories&a=011-FR
- http://www.securityfocus.com/bid/7149
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11587
- http://marc.info/?l=bugtraq&m=104820295115420&w=2
- http://marc.info/?l=bugtraq&m=104887510828106&w=2
- http://secunia.com/advisories/8353
- http://www.security-corporation.com/index.php?id=advisories&a=011-FR
- http://www.securityfocus.com/bid/7149
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11587