Sign in Get started

← All advisories

Unrated severityNVD Advisory· Published Dec 31, 2002· Updated Apr 16, 2026

CVE-2002-2289

CVE-2002-2289

Description

soinfo.php in BadBlue 1.7.1 calls the phpinfo function, which allows remote attackers to gain sensitive information including ODBC passwords.

Affected products

1

Working Resources Inc./Badblue
cpe:2.3:a:working_resources_inc.:badblue:1.7.1:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

5

online.securityfocus.com/archive/1/300992nvdExploit
securityreason.com/securityalert/3243nvdExploit
www.derkeiler.com/Mailing-Lists/Full-Disclosure/2002-11/0329.htmlnvdExploit
www.securityfocus.com/bid/6243nvd
exchange.xforce.ibmcloud.com/vulnerabilities/10690nvd

News mentions

0

No linked articles in our index yet.