Search 210752 CVE descriptions
and 93608 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:
Category:CGI abuses
Title:SimpleBBS users disclosure

It is possible to make the remote host enumerate its list
of SimpleBBS users by requesting the file users.php.

An attacker may use this flaw to gain the passwords of the users
and impersonate them.

Solution : Disable this CGI
Risk factor : High

Cross-Ref: BugTraq ID: 7045
CopyrightThis script is Copyright (C) 2003 Renaud Deraison

This is only one of 93608 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

© 1998-2021 E-Soft Inc. All rights reserved.