Vulnerability Details CVE-2011-5144
Open Business Management (OBM) 2.4.0-rc13 and earlier allows remote attackers to obtain configuration information via a direct request to test.php, which calls the phpinfo function.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 54.3%
CVSS Severity
CVSS v2 Score 5.0
References
- http://osvdb.org/78009
- http://secunia.com/advisories/47139
- https://exchange.xforce.ibmcloud.com/vulnerabilities/71924
- https://www.htbridge.ch/advisory/multiple_vulnerabilities_in_obm.html
- http://osvdb.org/78009
- http://secunia.com/advisories/47139
- https://exchange.xforce.ibmcloud.com/vulnerabilities/71924
- https://www.htbridge.ch/advisory/multiple_vulnerabilities_in_obm.html
Products affected by CVE-2011-5144
-
cpe:2.3:a:obm:open_business_management:2.4.0