CVE-2006-6112
LifeType 1.0.x/1.1.x suffer a path-disclosure flaw due to insufficient access control on PHP scripts under class/ and plugins/. Remote attackers can elicit the installation path via direct requests to scripts such as bayesianfilter.class.php and bootstrap.php. Affected components: bayesianfilter....