WWWBoard信息泄露漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1111918 漏洞类型 未知
发布时间 2007-01-01 更新时间 2007-01-01
CVE编号 CVE-1999-0953 CNNVD-ID CNNVD-199909-031
漏洞平台 CGI CVSS评分 10.0
|漏洞来源
https://www.exploit-db.com/exploits/3065
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-199909-031
|漏洞详情
WWWBoard将加密的密码存储在web根目录下的密码文件中,远程攻击者可以利用此漏洞进行访问。
|漏洞EXP
WWWBoard 2.0 Alpha 2 (passwd.txt) Password Disclosure Vulnerability



Affected Software: WWWBoard 2.0 Alpha

Download: http://www.scriptarchive.com/wwwboard.html

Bugfounder: bd0rk

Contact: bd0rk[at]hackermail.com

Greetz: str0ke, Döner, TheJT, x0r_32

[+]Exploit: http://[target]/[www_board_path]/passwd.txt

# milw0rm.com [2007-01-01]
|参考资料
VulnerablesoftwareandversionsConfiguration1OR*cpe:/a:matt_wright:wwwboard:2.0_alpha_2.1*DenotesVulnerableSoftware*ChangesrelatedtovulnerabilityconfigurationsTechnicalDetailsVulnerabilityType(ViewAll)CVEStandardVulnerabilityEntry:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-1999-0953