6.1 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
74.6%
HLstats 1.20 through 1.34 allows remote attackers to obtain sensitive information via playinfo mode, with certain values of the player and playerdata[lastName][] parameters, which reveals the path in an error message.
securityreason.com/securityalert/2064
www.securityfocus.com/archive/1/455305/100/0/threaded
www.securityfocus.com/bid/21740
www.exploit-db.com/exploits/3002