Filtered by vendor Boesch-it
Subscriptions
Filtered by product Simpgb
Subscriptions
Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2007-5130 | 1 Boesch-it | 1 Simpgb | 2024-11-21 | N/A |
| SimpGB 1.46.02 allows remote attackers to obtain sensitive information via (1) an invalid lang parameter to admin/index.php or (2) a direct request to admin/trailer.php, which reveals the path in various error messages. | ||||
| CVE-2007-5129 | 1 Boesch-it | 1 Simpgb | 2024-11-21 | N/A |
| SimpGB 1.46.02 stores sensitive information under the web root with insufficient access control, which allows remote attackers to (1) obtain sensitive configuration information via a direct request for admin/cfginfo.php; and (2) download arbitrary .inc files via a direct request, as demonstrated by admin/includes/dbtables.inc. | ||||
Page 1 of 1.