XOOPS 2.0 XoopsOption Information Disclosure Vulnerability

2003-03-20T00:00:00
ID EDB-ID:22389
Type exploitdb
Reporter gregory Le Bras
Modified 2003-03-20T00:00:00

Description

XOOPS 2.0 XoopsOption Information Disclosure Vulnerability. CVE-2003-1550. Webapps exploit for php platform

                                        
                                            source: http://www.securityfocus.com/bid/7149/info

XOOPS has been reported vulnerable to an information disclosure vulnerability. According to the report, path information and other sensitive data may be output in server error messages. Information obtained in this manner may be used by an attacker to launch further attacks against a vulnerable system. This vulnerability was reported to affect XOOPS version 2.0. It is not currently known if other versions are affected.

http://www.example.com/index.php?xoopsOption=any_word