CVE-2008-6159

Published: Feb 18, 2009Modified: Apr 23, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Content Management Made Easy (CMME) 1.19 allows remote attackers to obtain system information via a direct request to info.php, which invokes the phpinfo function.

Affected (1)

Products: Hans Oesterholt: Cmme

Hans Oesterholt

1 product

Cmme

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Hans Oesterholt Cmme	Version 1.19

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (8)

http://secunia.com/advisories/32169

Source: cve@mitre.org

Vendor Advisory

http://www.bugreport.ir/index_55.htm

Source: cve@mitre.org

Exploit

http://www.securityfocus.com/archive/1/497029/100/0/threaded

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/45703

Source: cve@mitre.org

http://secunia.com/advisories/32169

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.bugreport.ir/index_55.htm

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

http://www.securityfocus.com/archive/1/497029/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/45703

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.