Vulnerabilities > CVE-2002-1149 - Information Disclosure vulnerability in Invision Board 1.0/1.0.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
The installation procedure for Invision Board suggests that users install the phpinfo.php program under the web root, which leaks sensitive information such as absolute pathnames, OS information, and PHP settings.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |