CVE-2007-4089

Vikingboard 0.1.2 - Info Disclosure

Title source: llm

Description

Vikingboard 0.1.2 allows remote attackers to obtain sensitive information via the debug parameter to (1) forum.php, (2) cp.php, and possibly other unspecified components.

Exploits (2)

exploitdb WRITEUP VERIFIED

by Lostmon · textwebappsphp

https://www.exploit-db.com/exploits/30388

View Code ZIP pw:eip

exploitdb WRITEUP VERIFIED

by Lostmon · textwebappsphp

https://www.exploit-db.com/exploits/30387

View Code ZIP pw:eip

References (8)

[Exploit] http://lostmon.blogspot.com/2007/07/vikingboard-debug-information.html

[Exploit] http://lostmon.blogspot.com/2007/07/vikingboard-multiple-cross-site.html

[Vendor Advisory] http://secunia.com/advisories/26196

[Various Sources] http://secwatch.org/advisories/1018567/

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/35602

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/25060

[Third Party Advisory, VDB Entry] http://osvdb.org/36902

[Third Party Advisory, VDB Entry] http://osvdb.org/36903

Scores

EPSS 0.1142

EPSS Percentile 93.5%

Classification

Status draft

Affected Products (1)

vikingboard/vikingboard

Timeline

Published Jul 30, 2007

Tracked Since Feb 18, 2026