CVE-2008-3304

2008-07-25T13:41:00
ID CVE-2008-3304
Type cve
Reporter cve@mitre.org
Modified 2017-10-19T01:30:00

Description

BilboBlog 0.2.1 allows remote attackers to obtain sensitive information via (1) an enable_cache=false query string to footer.php or (2) a direct request to pagination.php, which reveals the installation path in an error message.