NVD

Id
1658  
Name
CVE-2008-1717  
Description
WoltLab Community Framework (WCF) 1.0.6 in WoltLab Burning Board 3.0.5 allows remote attackers to obtain the full path via invalid (1) page and (2) form parameters, which leaks the path from an exception handler when a valid class cannot be found.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:N/A:N)  
Pub Date
2017-01-03  
Published
2008-04-09  
Modified Date
2009-04-02  
Seq
2008-1717  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
10762 1658 CVE-2008-1717 20080407 WoltLab(R) Community Framework XSS and Full Path Disclosure Vulnerability  View
10763 1658 CVE-2008-1717 20080408 WoltLab(R) Community Framework XSS and Full Path Disclosure Vulnerability  View
10764 1658 CVE-2008-1717 20080407 WoltLab(R) Community Framework XSS and Full Path Disclosure Vulnerability  View
10765 1658 CVE-2008-1717 20080412 Re: WoltLab(R) Community Framework WCF 1.0.6  View
10766 1658 CVE-2008-1717 28678  View
10767 1658 CVE-2008-1717 wbb-wcf-exception-info-disclosure(41713)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
50354 JVNDB-2008-005664 WoltLab Burning Board の WCF におけるフルパスを取得される脆弱性 WoltLab Burning Board の WoltLab Community Framework (WCF) は、有効なクラスが見つからない場合、例外ハンドラからパスをリークするため、フルパスを取得される脆弱性が存在します。 CVE-2008-1717 31830 CVE-2008-1717 1658 5 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-005664.html 2008-04-09 2012-12-20 View