PT-2002-2145 · Invision · Invision Board

Published

2002-10-01

Updated

2016-10-18

CVE-2002-1149

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions: Invision Board (affected versions not specified)

Description: The issue concerns the installation procedure of Invision Board, which recommends installing the phpinfo.php program under the web root. This installation setup can lead to the exposure of sensitive information, including absolute pathnames, operating system details, and PHP configuration settings.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-1149

Affected Products

Invision Board

PT-2002-2145 · Invision · Invision Board

CVE-2002-1149

Related Identifiers

Affected Products

References · 6