6.6 Medium
AI Score
Confidence
Low
0.005 Low
EPSS
Percentile
76.6%
Agora.cgi 3.2r through 4.0 while in debug mode allows remote attackers to determine the full pathname of the agora.cgi file by requesting a non-existent .html file, which leaks the pathname in an error message.
online.securityfocus.com/archive/1/252761
www.iss.net/security_center/static/8011.php
www.securityfocus.com/bid/3976