3 matches found
CVE-2010-4401
languages.inc.php in DynPG CMS 4.2.0 allows remote attackers to obtain sensitive information via a direct request, which reveals the installation path in an error message...
CVE-2010-4401
DynPG CMS 4.2.0 is vulnerable via languages.inc.php, where direct requests disclose the installation path due to improper error handling. Exploitation details appear in public advisories; remediation is to apply the DynPG 4.2.1 security update. Other vulnerabilities in DynPG are noted in consolid...
Multiple Vulnerabilities in DynPG
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in DynPG which could be exploited to perform SQL injection attacks, disclose potentially sensitive information and compromise vulnerable system. 1 Installation path disclosure weakness in in DynPG: CVE-2010-4401 The...