Lucene search
K

3858 matches found

CVE
CVE
added 2011/09/24 12:0 a.m.35 views

CVE-2011-3777

CVE-2011-3777 affects phpFreeChat 1.3. The vulnerability allows remote attackers to disclose sensitive information by directly requesting a .php file, causing an error message that reveals the installation path (e.g., themes/zilveer/style.css.php and related files). The reports do not provide exp...

5CVSS6.3AI score0.01242EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2011/09/24 12:0 a.m.16 views

CVE-2011-3778

PhpGedView 4.2.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by serviceClientTest.php and certain other files...

6.1AI score0.01242EPSS
Exploits0References4
Cvelist
Cvelist
added 2011/09/24 12:0 a.m.19 views

CVE-2011-3812

Vanilla 2.0.16 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by plugins/Minify/min/utils.php and certain other files...

6.1AI score0.01229EPSS
Exploits0References3
Cvelist
Cvelist
added 2011/09/24 12:0 a.m.16 views

CVE-2011-3792

Pixelpost 1.7.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by includes/functionsfeeds.php and certain other files...

6.1AI score0.01229EPSS
Exploits0References3
Cvelist
Cvelist
added 2011/09/24 12:0 a.m.22 views

CVE-2011-3800

Serendipity 1.5.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by templates/newspaper/layout.php and certain other files...

6.1AI score0.01229EPSS
Exploits0References3
Cvelist
Cvelist
added 2011/09/24 12:0 a.m.22 views

CVE-2011-3769

PHPads 2.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by ads.inc.php...

6.1AI score0.01242EPSS
Exploits0References4
Cvelist
Cvelist
added 2011/09/24 12:0 a.m.24 views

CVE-2011-3779

PhpHostBot 2.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by admin/createacct.php and certain other files...

6.1AI score0.01229EPSS
Exploits0References3
Cvelist
Cvelist
added 2011/09/24 12:0 a.m.25 views

CVE-2011-3772

phpCollab 2.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by topics/notinewtopic.php and certain other files...

6.1AI score0.01229EPSS
Exploits0References3
Cvelist
Cvelist
added 2011/09/24 12:0 a.m.22 views

CVE-2011-3765

Open-Realty 2.5.8 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by install/versions/upgrade115.inc.php and certain other files...

6.1AI score0.01242EPSS
Exploits0References4
Cvelist
Cvelist
added 2011/09/24 12:0 a.m.24 views

CVE-2011-3799

ReOS 2.0.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by padmin/blocks/vergal.php and certain other files...

6.1AI score0.01229EPSS
Exploits0References3
CVE
CVE
added 2011/09/24 12:0 a.m.44 views

CVE-2011-3768

CVE-2011-3768 concerns Phorum 5.2.15a. The vulnerability is an information disclosure where remote attackers can obtain the installation path by making a direct request to a PHP file, with the path exposed in an error message (e.g., via css.php and related files). The connected documents confirm ...

5CVSS6.3AI score0.01242EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2011/09/24 12:0 a.m.20 views

CVE-2011-3826

Zikula 1.2.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by themes/voodoodolly/version.php and certain other files...

6.1AI score0.01229EPSS
Exploits0References3
Cvelist
Cvelist
added 2011/09/24 12:0 a.m.22 views

CVE-2011-3825

Zend Framework 1.11.3 in Zend Server CE 5.1.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by Validate.php and certain other files...

6.1AI score0.01264EPSS
Exploits0References3
NVD
NVD
added 2011/09/23 11:55 p.m.12 views

CVE-2011-3753

LinPHA 1.3.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by viewer.php and certain other files...

5CVSS6.1AI score0.01335EPSS
Exploits1References3
NVD
NVD
added 2011/09/23 11:55 p.m.20 views

CVE-2011-3754

Mambo 4.6.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by includes/sef.php and certain other files...

5CVSS6.1AI score0.01335EPSS
Exploits1References3
NVD
NVD
added 2011/09/23 11:55 p.m.18 views

CVE-2011-3752

LimeSurvey 1.90+ build9642-20101214 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by admin/statistics.php and certain other files...

5CVSS6.1AI score0.01335EPSS
Exploits1References3
NVD
NVD
added 2011/09/23 11:55 p.m.17 views

CVE-2011-3757

Moodle 2.0.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by webservice/xmlrpc/locallib.php and certain other files...

5CVSS6.1AI score0.01373EPSS
Exploits1References3
NVD
NVD
added 2011/09/23 11:55 p.m.14 views

CVE-2011-3735

Escort Agency CMS aka escort-agency-cms allows remote attackers to obtain sensitive information via crafted array parameters in a request to a .php file, which reveals the installation path in an error message, as demonstrated by makethumb.php and certain other files...

5CVSS6.2AI score0.01335EPSS
Exploits1References3
NVD
NVD
added 2011/09/23 11:55 p.m.13 views

CVE-2011-3732

eggBlog 4.1.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by lib/fckeditor/editor/dialog/fckspellerpages/spellerpages/server-scripts/spellchecker.php and certain other files...

5CVSS6.1AI score0.01335EPSS
Exploits1References3
NVD
NVD
added 2011/09/23 11:55 p.m.15 views

CVE-2011-3743

Hesk 2.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by inc/footer.inc.php and certain other files...

5CVSS6.1AI score0.01335EPSS
Exploits1References3
Rows per page
Query Builder