CVE-2015-2209

CVE-2015-2209

EPSS 1.4%

DLGuard 4.5 allows remote attackers to obtain the installation path via the c parameter to index.php.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://seclists.org/fulldisclosure/2015/Feb/67 http://tetraph.com/security/full-path-disclosure-vulnerability/dlguard-full-path-disclosure-information-leakage-security-vulnerabilities/http://www.securityfocus.com/bid/72685