2 matches found
CVE-2011-3809
TheHostingTool THT 1.2.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by includes/pear/Mail/smtp.php and certain other files...
CVE-2011-3809
The Hosting Tool (THT) version 1.2.3 is affected. A remote attacker can trigger an information-disclosure via a direct request to a PHP file (e.g., includes/pear/Mail/smtp.php) that reveals the installation path in an error message. This CVE (CVE-2011-3809) is documented with a base score of 5.0 ...