2 matches found
CVE-2006-5651
list.php in DigiOz Guestbook before 1.7.1 allows remote attackers to obtain sensitive information via a non-numeric page parameter, which displays the installation path in the resulting error message...
CVE-2006-5651
CVE-2006-5651 affects DigiOz Guestbook up to version 1.7.1. The vulnerability resides in the PHP script list.php, where an incorrect page parameter value leads to an error message that leaks the server installation path. The issue is described as an input validation fault in list.php, allowing re...