CVE-2008-1506

Published: Mar 25, 2008Modified: Apr 23, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

PEEL, possibly 3.x and earlier, allows remote attackers to obtain configuration information via a direct request to phpinfo.php, which calls the phpinfo function.

Affected (4)

Products: Peel: Peel

Peel

1 product

Peel

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Peel Peel	Up to 3.0
Peel Peel	Version 1.0b
Peel Peel	Version 2.6
Peel Peel	Version 2.7

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (6)

http://realn.free.fr/releases/70207

Source: cve@mitre.org

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/41494

Source: cve@mitre.org

https://www.exploit-db.com/exploits/5281

Source: cve@mitre.org

http://realn.free.fr/releases/70207

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/41494

Source: af854a3a-2127-422b-91ae-364da2661108

https://www.exploit-db.com/exploits/5281

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.