Vulnerabilities > CVE-2007-3556 - Unspecified vulnerability in Doubleflex Liesbeth Base CMS
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN doubleflex
exploit available
Summary
Liesbeth base CMS stores sensitive information under the web root with insufficient access control, which allows remote attackers to download an include file containing account credentials via a direct request for config.inc.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Liesbeth Base CMS Information Disclosure Vulnerability. CVE-2007-3556. Webapps exploit for php platform |
| id | EDB-ID:30262 |
| last seen | 2016-02-03 |
| modified | 2007-07-02 |
| published | 2007-07-02 |
| reporter | durito |
| source | https://www.exploit-db.com/download/30262/ |
| title | Liesbeth Base CMS Information Disclosure Vulnerability |
References
- http://osvdb.org/45744
- http://osvdb.org/45744
- http://securityreason.com/securityalert/2857
- http://securityreason.com/securityalert/2857
- http://securityvulns.ru/Rdocument392.html
- http://securityvulns.ru/Rdocument392.html
- http://www.securityfocus.com/archive/1/472727/100/0/threaded
- http://www.securityfocus.com/archive/1/472727/100/0/threaded
- http://www.securityfocus.com/bid/24749
- http://www.securityfocus.com/bid/24749
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35243
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35243