CVE-2007-0194

2007-01-12T05:04:00
ID CVE-2007-0194
Type cve
Reporter cve@mitre.org
Modified 2018-10-16T16:31:00

Description

admin.php in MKPortal M1.1 RC1 allows remote attackers to obtain sensitive information via a direct request with an MK_PATH=1 query string, which reveals the path in an error message.