Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 30/12/2009 Updated: 17/08/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

DeluxeBB 1.3 allows remote malicious users to obtain sensitive information via a crafted page parameter to misc.php, which reveals the installation path in an error message. NOTE: this issue might be resultant from improperly controlled computation in tools.php that leads to a denial of service (CPU or memory consumption).

Vulnerable Product	Search on Vulmon	Subscribe to Product
deluxebb deluxebb 1.3

# Author: cp77fk4r | Empty0pagE[Shift+2]gmailcom<gmailcom> # Vendor: wwwdeluxebbcom # #[Directory Listing] server/templates/ server/images/ server/logs/ server/wysiwyg/ server/docs/ server/classes server/lang server/settings/ # # #[Cross Site Scripting] server/mi ...

CWE-200 http://www.securityfocus.com/bid/37448 http://www.exploit-db.com/exploits/10598 https://exchange.xforce.ibmcloud.com/vulnerabilities/54980 https://nvd.nist.gov https://www.exploit-db.com/exploits/10598/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2009-4466

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect