CVE-2008-3304

2008-07-25T09:41:00
ID CVE-2008-3304
Type cve
Reporter NVD
Modified 2017-10-18T21:30:14

Description

BilboBlog 0.2.1 allows remote attackers to obtain sensitive information via (1) an enable_cache=false query string to footer.php or (2) a direct request to pagination.php, which reveals the installation path in an error message.