CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2007-6606

OpenBiblio 0.5.2-pre4 and earlier allows remote attackers to obtain configuration information via a direct request to phpinfo.php, which calls the phpinfo function.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 48.8%

CVSS Severity

CVSS v2 Score 5.0

References

http://osvdb.org/40377
http://securityreason.com/securityalert/3502
http://sourceforge.net/project/shownotes.php?release_id=451780&group_id=50071
http://sourceforge.net/project/shownotes.php?release_id=488061&group_id=50071
http://www.securityfocus.com/archive/1/485588/100/0/threaded
http://www.securityfocus.com/bid/27053
http://osvdb.org/40377
http://securityreason.com/securityalert/3502
http://sourceforge.net/project/shownotes.php?release_id=451780&group_id=50071
http://sourceforge.net/project/shownotes.php?release_id=488061&group_id=50071
http://www.securityfocus.com/archive/1/485588/100/0/threaded
http://www.securityfocus.com/bid/27053

Products affected by CVE-2007-6606

Openbiblio » Openbiblio » Version: Any

cpe:2.3:a:openbiblio:openbiblio:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-6606

Products

Pricing

Contact Us