Unrated severityNVD Advisory· Published Sep 27, 2007· Updated Apr 23, 2026
CVE-2007-5129
CVE-2007-5129
Description
SimpGB 1.46.02 stores sensitive information under the web root with insufficient access control, which allows remote attackers to (1) obtain sensitive configuration information via a direct request for admin/cfginfo.php; and (2) download arbitrary .inc files via a direct request, as demonstrated by admin/includes/dbtables.inc.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
10- forum.boesch-it.de/viewtopic.phpnvdPatch
- secunia.com/advisories/26974nvdVendor Advisory
- osvdb.org/40612nvd
- osvdb.org/40613nvd
- www.netvigilance.com/advisory0065nvd
- www.netvigilance.com/advisory0066nvd
- www.securityfocus.com/archive/1/480590/100/0/threadednvd
- www.securityfocus.com/archive/1/480592/100/0/threadednvd
- exchange.xforce.ibmcloud.com/vulnerabilities/36776nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/36777nvd
News mentions
0No linked articles in our index yet.