PHPOutsourcing Zorum 3.4 Path Disclosure Vulnerability

2003-08-11T00:00:00
ID EDB-ID:23018
Type exploitdb
Reporter Zone-h Security Team
Modified 2003-08-11T00:00:00

Description

PHPOutsourcing Zorum 3.4 Path Disclosure Vulnerability. CVE-2003-1089. Webapps exploit for php platform

                                        
                                            source: http://www.securityfocus.com/bid/8396/info

A vulnerability has been reported in Zorum message board software that allows a remote attacker to send a malformed HTTP request resulting in a disclosure of the installation path.

This issue may allow an attacker to gain knowledge of the file system in order to mount further attacks against the host.

http://www.example.com/forum/index.php?method=userfunctions&'list=secmenu&