CVE-2008-4164

2008-09-2217:00:00

mitre

www.cve.org

6.1 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

68.8%

JSON

cron.php in MemHT Portal 3.9.0 and earlier allows remote attackers to obtain sensitive information via a direct request, which reveals the installation path in an error message.

References

securityreason.com/securityalert/4288

exchange.xforce.ibmcloud.com/vulnerabilities/45413

www.exploit-db.com/exploits/6393