2 matches found
CVE-2004-2362
CVE-2004-2362 affects PHPX 3.2.6 and earlier. The issue allows remote attackers to obtain the physical path of PHPX by supplying a null or invalid value in the “limit” parameter, causing the pathname to be leaked in a database error message (demonstrated via forums.php). This is an information-di...
CVE-2004-2362
PHPX 3.2.6 and earlier allows remote attackers to obtain the physical path of PHPX via a null or invalid value in the limit parameter, which leaks the pathname in a database error message, as demonstrated using forums.php...