← Back

Simpgb

simpgb

Vendor: Boesch It • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2007-5130
1Boesch It
1Simpgb
Apr 23, 2026
Sep 27, 2007
N/A· v4
N/A· v3
4.3 MEDIUM· v2
SimpGB 1.46.02 allows remote attackers to obtain sensitive information via (1) an invalid lang parameter to admin/index.php or (2) a direct request to admin/trailer.php, which reveals the path in various error messages.
CVE-2007-5129
1Boesch It
1Simpgb
Apr 23, 2026
Sep 27, 2007
N/A· v4
N/A· v3
5.0 MEDIUM· v2
SimpGB 1.46.02 stores sensitive information under the web root with insufficient access control, which allows remote attackers to (1) obtain sensitive configuration information via a direct request for admin/cfginfo.php;...Show more
SimpGB 1.46.02 stores sensitive information under the web root with insufficient access control, which allows remote attackers to (1) obtain sensitive configuration information via a direct request for admin/cfginfo.php; and (2) download arbitrary .inc files via a direct request, as demonstrated by admin/includes/dbtables.inc.Show less