← voltar
CVE-2004-2671

CVE-2004-2671

EPSS 1.6%
mod.php in eNdonesia 8.3 allows remote attackers to obtain sensitive information via certain direct requests, and certain requests with invalid parameter values, which reveal the path in various error messages, as demonstrated by the (1) mod and (2) cid parameters.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://echo.or.id/adv/adv02-y3dips-2004.txthttp://secunia.com/advisories/12231http://securitytracker.com/id?1010864https://exchange.xforce.ibmcloud.com/vulnerabilities/13042http://www.securityfocus.com/archive/1/370855http://www.securityfocus.com/bid/8507