← back
CVE-2009-4466

CVE-2009-4466

EPSS 2.4%
DeluxeBB 1.3 allows remote attackers to obtain sensitive information via a crafted page parameter to misc.php, which reveals the installation path in an error message. NOTE: this issue might be resultant from improperly controlled computation in tools.php that leads to a denial of service (CPU or memory consumption).
Affected products
n/a · n/a
public PoCs found2
cve_referencewww.exploit-db.com/exploits/10598unverifiedexploitdbwww.exploit-db.com/exploits/10598unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/54980http://www.exploit-db.com/exploits/10598http://www.securityfocus.com/bid/37448