CVE-2007-6399 — MEDIUM (6.5)

Q: How severe is CVE-2007-6399?

CVE-2007-6399 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2007-6399?

Check the references section above for vendor advisories and patch information. Affected products include: Myupb Flat Php Board.

Vulnerability Description

index.php in Flat PHP Board 1.2 and earlier allows remote authenticated users to obtain the password for the current user account by reading the password parameter value in the HTML source for the page generated by a profile action.

CVSS Score

6.5

MEDIUM

AV:N/AC:L/Au:S/C:P/I:P/A:P

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

Affected Products

Vendor	Product	Versions
Myupb	Flat Php Board	<= 1.2

Related Weaknesses (CWE)

CWE-255

References

FAQ

What is CVE-2007-6399?

CVE-2007-6399 is a vulnerability with a CVSS score of 6.5 (MEDIUM). index.php in Flat PHP Board 1.2 and earlier allows remote authenticated users to obtain the password for the current user account by reading the password parameter value in the HTML source for the pag...

How severe is CVE-2007-6399?

CVE-2007-6399 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2007-6399?

Check the references section above for vendor advisories and patch information. Affected products include: Myupb Flat Php Board.