Unrated severityNVD Advisory· Published Apr 9, 2008· Updated Jun 16, 2026
CVE-2008-1717
CVE-2008-1717
Description
WoltLab Community Framework (WCF) 1.0.6 in WoltLab Burning Board 3.0.5 allows remote attackers to obtain the full path via invalid (1) page and (2) form parameters, which leaks the path from an exception handler when a valid class cannot be found.
Affected products
3cpe:2.3:a:woltlab:burning_board:3.0.5:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:woltlab:burning_board:3.0.5:*:*:*:*:*:*:*
- (no CPE)range: =3.0.5
- Range: =1.0.6
Patches
Vulnerability mechanics
References
7- secunia.com/advisories/29719nvdVendor Advisory
- archives.neohapsis.com/archives/fulldisclosure/2008-04/0161.htmlnvd
- lists.grok.org.uk/pipermail/full-disclosure/2008-April/061271.htmlnvd
- www.securityfocus.com/archive/1/490560/100/0/threadednvd
- www.securityfocus.com/archive/1/490782/100/0/threadednvd
- www.securityfocus.com/bid/28678nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/41713nvd
News mentions
0No linked articles in our index yet.