CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-3763

Exponent CMS 0.96.3 and later versions includes the full installation path in the base parameter to thumb.php, which allows remote attackers to obtain sensitive information. NOTE: this might be resultant from an absolute path traversal vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.3%

CVSS Severity

CVSS v2 Score 5.0

References

http://secunia.com/advisories/17505
http://secunia.com/advisories/17655
http://www.securityfocus.com/archive/1/417218
http://secunia.com/advisories/17505
http://secunia.com/advisories/17655
http://www.securityfocus.com/archive/1/417218

Products affected by CVE-2005-3763

Exponent » Exponent » Version: 0.94

cpe:2.3:a:exponent:exponent:0.94
Exponent » Exponent » Version: 0.95

cpe:2.3:a:exponent:exponent:0.95
Exponent » Exponent » Version: 0.96.1

cpe:2.3:a:exponent:exponent:0.96.1
Exponent » Exponent » Version: 0.96.3

cpe:2.3:a:exponent:exponent:0.96.3
Exponent » Exponent » Version: 0.96.4

cpe:2.3:a:exponent:exponent:0.96.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-3763

Products

Pricing

Contact Us