CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-3304

BilboBlog 0.2.1 allows remote attackers to obtain sensitive information via (1) an enable_cache=false query string to footer.php or (2) a direct request to pagination.php, which reveals the installation path in an error message.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.048

EPSS Ranking 89.1%

CVSS Severity

CVSS v2 Score 5.0

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/43766
https://www.exploit-db.com/exploits/6073
https://exchange.xforce.ibmcloud.com/vulnerabilities/43766
https://www.exploit-db.com/exploits/6073

Products affected by CVE-2008-3304

Tuxplanet » Bilboblog » Version: 0.2.1

cpe:2.3:a:tuxplanet:bilboblog:0.2.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-3304

Products

Pricing

Contact Us