Vulnerabilities > CVE-2006-0131 - Information Disclosure vulnerability in Boastmachine 3.1

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

boastmachine

NVD

Published: 2006-01-09

Updated: 2018-10-19

Summary

boastMachine 3.1 allows remote attackers to obtain sensitive information via a direct request to (1) footer.php and (2) side_menu.php, which reveals the path in an error message.

Vulnerable Configurations

Part	Description	Count
Application	Boastmachine Boastmachine Boastmachine 3.1	1

References

http://echo.or.id/adv/adv26-K-159-2006.txt
http://www.securityfocus.com/archive/1/420969/100/0/threaded