Vulnerabilities > CVE-2021-33558 - Unspecified vulnerability in BOA 0.94.13
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
Boa 0.94.13 allows remote attackers to obtain sensitive information via a misconfiguration involving backup.html, preview.html, js/log.js, log.html, email.html, online-users.html, and config.js. NOTE: multiple third parties report that this is a site-specific issue because those files are not part of Boa.
Related news
References
- https://github.com/mdanzaruddin/CVE-2021-33558.
- https://github.com/mdanzaruddin/CVE-2021-33558.
- https://github.com/mdanzaruddin/CVE-2021-33558./issues/1
- https://github.com/mdanzaruddin/CVE-2021-33558./issues/1
- https://sourceforge.net/projects/boa/files/boa/0.94.13/
- https://sourceforge.net/projects/boa/files/boa/0.94.13/