Information disclosure

Realm CMS 2.3 and earlier allows remote attackers to obtain sensitive information via a direct request to db/compact.asp, which reveals the database path in an error message...

CVE-2008-2681

Realm CMS 2.3 and earlier allows remote attackers to obtain sensitive information via a direct request to db/compact.asp, which reveals the database path in an error message...

CVE-2008-0136

Snitz Forums 2000 3.4.05 allows remote attackers to obtain sensitive information via a direct request to forum/whereami.asp, which reveals the database path...

Path traversal

Snitz Forums 2000 3.4.05 allows remote attackers to obtain sensitive information via a direct request to forum/whereami.asp, which reveals the database path...

CVE-2008-0136

Snitz Forums 2000 3.4.05 allows remote attackers to obtain sensitive information via a direct request to forum/whereami.asp, which reveals the database path...

Move-2006_SP6 the latest vulnerability to obtain the administrator password-vulnerability warning-the black bar safety net

Ghost boy note: from 7j there to see, and there 7j write the received page. 7j:did not find he said the receiving page,only from have PHP write a. ? $filename = date"Ymd".". txt"; $time = @date"Y years m months d number of H points i points s seconds",time; $cookie = $POST'cookie'; $url =...

ZoomStats <= 1.0.2 (mysql.php) Remote File Include Vulnerability

ToXiC BuG FounD by Drago84 Application Affect:ZoomStats Source Code: http://prdownloads.sourceforge.net/zoomstats/ZoomStats-v1.0.2.zip?usemirror=kent Problem: $GLOBALS'lib''db''path' array not declare Solution : $GLOBALS'lib''db''path' Page Vulnerable : mysql.php Dir Page: /libs/dbmax/ Exempe Of...