CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-0655

auraCMS 1.5 allows remote attackers to obtain sensitive information via an HTTP request with an invalid id parameter to (1) teman.php, (2) hal.php, or (3) arsip.php, which reveals the path in a PHP error message.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.2%

CVSS Severity

CVSS v2 Score 5.0

References

http://echo.or.id/adv/adv011-y3dips-2005.txt
http://marc.info/?l=bugtraq&m=110979842315750&w=2
http://securitytracker.com/id?1013357
http://echo.or.id/adv/adv011-y3dips-2005.txt
http://marc.info/?l=bugtraq&m=110979842315750&w=2
http://securitytracker.com/id?1013357

Products affected by CVE-2005-0655

Arif Supriyanto » Auracms » Version: 1.5

cpe:2.3:a:arif_supriyanto:auracms:1.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-0655

Products

Pricing

Contact Us