Lucene search
K

3858 matches found

OSV
OSV
added 2011/09/23 11:55 p.m.2 views

DEBIAN-CVE-2011-3699

John Lim ADOdb Library for PHP 5.11 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by tests/test-active-record.php and certain other files...

5CVSS6.7AI score0.01373EPSS
Exploits1References1
Prion
Prion
added 2011/09/23 11:55 p.m.20 views

Information disclosure

ATutor 2.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by users/toolsettings.inc.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.20 views

Information disclosure

LimeSurvey 1.90+ build9642-20101214 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by admin/statistics.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.19 views

Information disclosure

appRain 0.1.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by cron.php...

5CVSS6.6AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.13 views

Design/Logic Flaw

Escort Agency CMS aka escort-agency-cms allows remote attackers to obtain sensitive information via crafted array parameters in a request to a .php file, which reveals the installation path in an error message, as demonstrated by makethumb.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3
Prion
Prion
added 2011/09/23 11:55 p.m.14 views

Information disclosure

LifeType 1.2.10 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by plugins/badbehavior/pluginbadbehavior.class.php...

5CVSS6.6AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.14 views

Information disclosure

CakePHP 1.3.7 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by dispatcher.php and certain other files...

5CVSS6.6AI score0.01372EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.12 views

Information disclosure

Achievo 1.4.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by modules/graph/jpgraph/jpgraphradar.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.18 views

Information disclosure

Kamads Classifieds 2B3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by V2AXHTML/style/view.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3
Prion
Prion
added 2011/09/23 11:55 p.m.15 views

Information disclosure

Mambo 4.6.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by includes/sef.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.13 views

Information disclosure

Ananta Gazelle 1.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by modules/template.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
UbuntuCve
UbuntuCve
added 2011/09/23 11:55 p.m.23 views

CVE-2011-3730

Drupal 7.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by modules/simpletest/tests/upgrade/drupal-6.upload.database.php and certain other files...

5CVSS7.1AI score0.01644EPSS
Exploits1References1
Prion
Prion
added 2011/09/23 11:55 p.m.10 views

Information disclosure

ka-Map 1.0-20070205 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by test.php and certain other files...

5CVSS6.7AI score0.01229EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.17 views

Information disclosure

DokuWiki 2009-12-25c allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by lib/tpl/index.php and certain other files...

5CVSS6.4AI score0.01952EPSS
Exploits1References9Affected Software1
UbuntuCve
UbuntuCve
added 2011/09/23 11:55 p.m.29 views

CVE-2011-3712

CakePHP 1.3.7 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by dispatcher.php and certain other files...

5CVSS5.9AI score0.01372EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2011/09/23 11:55 p.m.31 views

CVE-2011-3744

HTML Purifier 4.2.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by tests/PHPT/Reporter/SimpleTest.php and certain other files...

5CVSS5.9AI score0.01372EPSS
Exploits1References1
Prion
Prion
added 2011/09/23 11:55 p.m.12 views

Information disclosure

AdaptCMS 2.0.2 Beta allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by inc/pollvote.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.17 views

Information disclosure

DoceboLMS 4.0.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by views/dummy/show.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.15 views

Information disclosure

Feng Office 1.7.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by public/upgrade/templates/layout.php and certain other files...

5CVSS6.6AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.13 views

Information disclosure

kPlaylist 1.8.502 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by getid3/getid3/write.id3v1.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder