Vulnerability Details CVE-2005-2423
Beehive Forum allows remote attackers to obtain sensitive information via (1) an invalid final_uri or sort_by parameter to index.php or a direct request to (2) admin.php, (3) attachments.inc.php, (4) banned.inc.php, (5) beehive.inc.php, (6) constants.inc.php, (7) db.inc.php, (8) dictionary.inc.php or (9) search_index.php, which reveal the path in an error message.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.3%
CVSS Severity
CVSS v2 Score 5.0
References
Products affected by CVE-2005-2423
-
cpe:2.3:a:beehive_forum:beehive_forum:0.1
-
cpe:2.3:a:beehive_forum:beehive_forum:0.1.1
-
cpe:2.3:a:beehive_forum:beehive_forum:0.2
-
cpe:2.3:a:beehive_forum:beehive_forum:0.3
-
cpe:2.3:a:beehive_forum:beehive_forum:0.3.1
-
cpe:2.3:a:beehive_forum:beehive_forum:0.4
-
cpe:2.3:a:beehive_forum:beehive_forum:0.5
-
cpe:2.3:a:beehive_forum:beehive_forum:0.6rc1
-
cpe:2.3:a:beehive_forum:beehive_forum:0.6rc2