Vulnerability Database

308,681

Total vulnerabilities in the database

CVE-2004-2588

Intentional information leak in phpinfo.php in XMB (aka extreme message board) 1.9 beta (aka Nexus beta) allows remote attackers to obtain sensitive information such as the configuration of the web server and the PHP application.

Published: Dec 31, 2004
Updated: Nov 9, 2025
CVE: CVE-2004-2588
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
xmb_software / xmb_forum	1.9_nexus_beta	1.9_nexus_beta.x

http://archives.neohapsis.com/archives/bugtraq/2004-03/0265.html
http://marc.info/?l=bugtraq&m=108032355905265&w=2
http://securitytracker.com/id?1009561
http://www.osvdb.org/4643
http://www.securityfocus.com/bid/9983
https://docs.xmbforum2.com/index.php?title=Security_Issue_History
https://exchange.xforce.ibmcloud.com/vulnerabilities/15656

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo