CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-1914

DbbS 2.0-alpha and earlier allows remote attackers to obtain sensitive information via an invalid (1) fcategoryid parameter to topics.php or (2) unavariabile, (3) GLOBALS, or (4) _SERVER[] parameters to script.php. NOTE: this information leak might be resultant from a global variable overwrite issue.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.3%

CVSS Severity

CVSS v2 Score 5.0

References

http://securityreason.com/securityalert/771
http://www.securityfocus.com/archive/1/431117
https://exchange.xforce.ibmcloud.com/vulnerabilities/25922
http://securityreason.com/securityalert/771
http://www.securityfocus.com/archive/1/431117
https://exchange.xforce.ibmcloud.com/vulnerabilities/25922

Products affected by CVE-2006-1914

Dbbs » Dbbs » Version: Any

cpe:2.3:a:dbbs:dbbs:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-1914

Products

Pricing

Contact Us