Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
huntrUonghoangminhchauC40BADC3-C9E7-4B69-9E2E-2B9F05865159
HistorySep 09, 2022 - 7:39 a.m.

Error page is default and leak error information

2022-09-0907:39:15
uonghoangminhchau
www.huntr.dev
10
error page
information leak
vulnerabilities

EPSS

0.001

Percentile

30.0%

JSON

Description

Information is leak in error page and this can support for other vulnerabilities.

Proof of Concept

Whenever trying to input anything meaningless after the link https://rdiffweb-demo.ikus-soft.com/ the error page will appear.
Example: https://rdiffweb-demo.ikus-soft.com/*
https://rdiffweb-demo.ikus-soft.com/
https://rdiffweb-demo.ikus-soft.com/admin/

Related

osv 3
prion 1
cvelist 1
cve 1
nvd 1
veracode 1
github 1
osv
osv
PYSEC-2022-273
2022-09-13 10:15:00
rdiffweb 2.4.1 Missing Custom Error Page
2022-09-14 00:00:51
CVE-2022-3175
2022-09-13 10:15:12
prion
prion
Design/Logic Flaw
2022-09-13 10:15:00
cvelist
cvelist
CVE-2022-3175 Missing Custom Error Page in ikus060/rdiffweb
2022-09-13 09:20:10
cve
cve
CVE-2022-3175
2022-09-13 10:15:12
nvd
nvd
CVE-2022-3175
2022-09-13 10:15:12
veracode
veracode
Information Disclosure
2022-09-14 05:29:52
github
github
rdiffweb 2.4.1 Missing Custom Error Page
2022-09-14 00:00:51

EPSS

0.001

Percentile

30.0%

JSON
Related for C40BADC3-C9E7-4B69-9E2E-2B9F05865159
osv3prion1cvelist1cve1nvd1veracode1github1