← back
CVE-2002-2289

CVE-2002-2289

EPSS 1.4%
soinfo.php in BadBlue 1.7.1 calls the phpinfo function, which allows remote attackers to gain sensitive information including ODBC passwords.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://online.securityfocus.com/archive/1/300992http://securityreason.com/securityalert/3243https://exchange.xforce.ibmcloud.com/vulnerabilities/10690http://www.derkeiler.com/Mailing-Lists/Full-Disclosure/2002-11/0329.htmlhttp://www.securityfocus.com/bid/6243