Lucene search
K

3858 matches found

Prion
Prion
added 2011/09/24 12:55 a.m.11 views

Information disclosure

PrestaShop 1.4.0.6 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by product-sort.php and certain other files...

5CVSS6.7AI score0.01926EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2011/09/24 12:55 a.m.12 views

Information disclosure

Phorum 5.2.15a allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by css.php and certain other files...

5CVSS6.7AI score0.01242EPSS
Exploits0References4Affected Software1
UbuntuCve
UbuntuCve
added 2011/09/24 12:55 a.m.22 views

CVE-2011-3807

Textpattern 4.2.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by lib/txplibdb.php and certain other files...

5CVSS5.9AI score0.01229EPSS
Exploits0References1
Prion
Prion
added 2011/09/24 12:55 a.m.13 views

Information disclosure

PHPDevShell 3.0.0-Beta-4b allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by gzip.php...

5CVSS6.6AI score0.01242EPSS
Exploits0References4Affected Software1
UbuntuCve
UbuntuCve
added 2011/09/24 12:55 a.m.24 views

CVE-2011-3790

Piwigo 2.1.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by tools/metadata.php and certain other files...

5CVSS5.9AI score0.01229EPSS
Exploits0References1
Prion
Prion
added 2011/09/24 12:55 a.m.12 views

Information disclosure

osCommerce 3.0a5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by redirect.php...

5CVSS6.6AI score0.01242EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2011/09/24 12:55 a.m.4 views

UBUNTU-CVE-2011-3818

WordPress 2.9.2 and 3.0.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by wp-admin/includes/user.php and certain other files...

5CVSS5.8AI score0.02269EPSS
Exploits0References2
Prion
Prion
added 2011/09/24 12:55 a.m.10 views

Information disclosure

SimpleTest 1.0.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by test/visualtest.php and certain other files...

5CVSS6.7AI score0.01229EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2011/09/24 12:55 a.m.8 views

UBUNTU-CVE-2011-3825

Zend Framework 1.11.3 in Zend Server CE 5.1.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by Validate.php and certain other files...

5CVSS5.8AI score0.01264EPSS
Exploits0References2
Cvelist
Cvelist
added 2011/09/24 12:0 a.m.17 views

CVE-2011-3766

OrangeHRM 2.6.0.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by themes/orange/menu/Menu.php and certain other files...

6.1AI score0.01242EPSS
Exploits0References4
Cvelist
Cvelist
added 2011/09/24 12:0 a.m.16 views

CVE-2011-3770

phpAlbum 0.4.1.14 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by themes/FlowingDark/parameters.tpl.php and certain other files...

6.1AI score0.01242EPSS
Exploits0References4
Cvelist
Cvelist
added 2011/09/24 12:0 a.m.25 views

CVE-2011-3814

WebCalendar 1.2.3, and other versions before 1.2.5, allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by ws/usermod.php and certain other files...

6.1AI score0.01242EPSS
Exploits0References4
Cvelist
Cvelist
added 2011/09/24 12:0 a.m.21 views

CVE-2011-3821

xajax 0.6 beta1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by xajaxcore/pluginlayer/xajaxScriptPlugin.inc.php and certain other files...

6.1AI score0.01263EPSS
Exploits0References3
Cvelist
Cvelist
added 2011/09/24 12:0 a.m.15 views

CVE-2011-3773

PHPDevShell 3.0.0-Beta-4b allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by gzip.php...

6.1AI score0.01242EPSS
Exploits0References4
Cvelist
Cvelist
added 2011/09/24 12:0 a.m.18 views

CVE-2011-3791

Piwik 1.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by plugins/Widgetize/Widgetize.php and certain other files...

6.1AI score0.01229EPSS
Exploits0References3
Cvelist
Cvelist
added 2011/09/24 12:0 a.m.25 views

CVE-2011-3760

Nucleus 3.61 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by xmlrpc/apinucleus.inc.php and certain other files...

6.1AI score0.0135EPSS
Exploits1References4
Cvelist
Cvelist
added 2011/09/24 12:0 a.m.22 views

CVE-2011-3789

phpwcms 1.4.7 r412 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by template/incscript/frontendrender/disabled/majonavi.php and certain other files...

6.1AI score0.01229EPSS
Exploits0References3
Cvelist
Cvelist
added 2011/09/24 12:0 a.m.19 views

CVE-2011-3794

Pligg CMS 1.1.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by widgets/statistics/init.php and certain other files...

6.2AI score0.01229EPSS
Exploits0References3
Cvelist
Cvelist
added 2011/09/24 12:0 a.m.23 views

CVE-2011-3813

Virtual War aka VWar 1.5.0r15 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by includes/language/dutch.inc.php and certain other files...

6.1AI score0.01229EPSS
Exploits0References3
Cvelist
Cvelist
added 2011/09/24 12:0 a.m.17 views

CVE-2011-3761

NuSOAP 0.9.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by nuSOAP/classes/class.wsdl.php and certain other files...

6.1AI score0.01373EPSS
Exploits1References4
Rows per page
Query Builder