← CVECheck
HomeVulnerabilities

CVE-2002-2289 — MEDIUM severity vulnerability (soinfo.php in BadBlue 1.7.1 calls the phpinfo function, whic)

soinfo.php in BadBlue 1.7.1 calls the phpinfo function, which allows remote attackers to gain sensitive information including ODBC passwords.

CVE IDCVE-2002-2289
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:P/I:N/A:N
CWECWE-200
StatusModified
Published2002-12-31
Last modified2026-04-16
Descriptionsoinfo.php in BadBlue 1.7.1 calls the phpinfo function, which allows remote attackers to gain sensitive information including ODBC passwords.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →