CVE-2006-1914 Information
Feb 14, 2021
cve
Description
DbbS 2.0-alpha and earlier allows remote attackers to obtain sensitive information via an invalid (1) fcategoryid parameter to topics.php or (2) unavariabile (3) GLOBALS or (4) _SERVER[] parameters to script.php. NOTE: this information leak might be resultant from a global variable overwrite issue.
Reference
http://securityreason.com/securityalert/771 http://www.securityfocus.com/archive/1/431117 https://exchange.xforce.ibmcloud.com/vulnerabilities/25922
Share on: