2 matches found
CVE-2011-3821
xajax 0.6 beta1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by xajaxcore/pluginlayer/xajaxScriptPlugin.inc.php and certain other files...
CVE-2011-3821
CVE-2011-3821 affects xajax 0.6 beta1. A direct request to a vulnerable PHP file (e.g., xajax_core/plugin_layer/xajaxScriptPlugin.inc.php and related files) may disclose the installation path via an error message. The provided documents confirm the information-disclosure impact but do not describ...