CVE-2001-1437

2001-12-01T05:00:00
ID CVE-2001-1437
Type cve
Reporter cve@mitre.org
Modified 2017-07-11T01:29:00

Description

easyScripts easyNews 1.5 allows remote attackers to obtain the full path of the web root via a view request with a non-integer news message id field, which leaks the path in a PHP error message when the script times out.