Loading...
Loading...
DeluxeBB 1.3 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain user and configuration information, log data, and gain administrative access via a direct request to scripts in (1) templates/ including (2) templates/deluxe/admincp/, (3) templates/corporate/admincp/, and (4) templates/blue/admincp/; (5) images/; (6) logs/ including (7) logs/cp.php; (8) wysiwyg/; (9) docs/; (10) classes/; (11) lang/; and (12) settings/.
December 30, 2009
April 23, 2026
See which npm, PyPI, Go, and Maven packages are affected by CVE-2009-4465
EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.