CVE-2012-4256

2012-08-1318:00:00

mitre

www.cve.org

AI Score

6.2

Confidence

Low

EPSS

0.003

Percentile

69.4%

JSON

The jNews (com_jnews) component 7.5.1 for Joomla! allows remote attackers to obtain sensitive information via the emailsearch parameter, which reveals the installation path in an error message.

References

hauntit.blogspot.com/2012/04/en-jnews-jnewscore751-information.html

packetstormsecurity.org/files/112233/jNews-7.5.1-Information-Disclosure.html

exchange.xforce.ibmcloud.com/vulnerabilities/75198