Vulnerabilities > CVE-2006-3370 - Information Disclosure vulnerability in Bb-News Blueboy 1.0.3
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Blueboy 1.0.3 stores bb_news_config.inc under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information, including the database configuration.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |