Vulnerability Details CVE-2013-1402
DigiLIBE 3.4 and possibly other versions sends a redirect but does not exit, which allows remote attackers to obtain sensitive configuration information via a direct request to configuration/general_configuration.html.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.061
EPSS Ranking 90.4%
CVSS Severity
CVSS v2 Score 5.0
References
Products affected by CVE-2013-1402
-
cpe:2.3:a:digitiliti:digilibe:3.4