Lucene search
K

3858 matches found

Prion
Prion
added 2011/09/23 11:55 p.m.14 views

Information disclosure

Dolphin 7.0.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by xmlrpc/BxDolXMLRPCProfileView.php and certain other files...

5CVSS6.6AI score0.01229EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.16 views

Information disclosure

AlegroCart 1.2.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by common.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.15 views

Design/Logic Flaw

HTML Purifier 4.2.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by tests/PHPT/Reporter/SimpleTest.php and certain other files...

5CVSS6.5AI score0.01372EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.12 views

Information disclosure

e107 0.7.24 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by e107plugins/pdf/e107pdf.php and certain other files...

5CVSS6.6AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.16 views

Design/Logic Flaw

Jcow 4.2.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by themes/default/page.tpl.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.11 views

Information disclosure

eggBlog 4.1.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by lib/fckeditor/editor/dialog/fckspellerpages/spellerpages/server-scripts/spellchecker.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.14 views

Information disclosure

HycusCMS 1.0.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by templates/hycustemplate/template.php...

5CVSS6.6AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.14 views

Information disclosure

Moodle 2.0.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by webservice/xmlrpc/locallib.php and certain other files...

5CVSS6.6AI score0.01373EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.13 views

Information disclosure

bbPress 1.0.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by bb-templates/kakumei/view.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.13 views

Information disclosure

Claroline 1.9.7 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by work/connector/linker.cnr.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.14 views

Information disclosure

AneCMS 1.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by widgets/menu/index.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
UbuntuCve
UbuntuCve
added 2011/09/23 11:55 p.m.19 views

CVE-2011-3740

FrontAccounting 2.3.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by reporting/includes/fpdi/fpdi2tcpdfbridge.php and certain other files...

5CVSS5.9AI score0.01372EPSS
Exploits1References1
Prion
Prion
added 2011/09/23 11:55 p.m.11 views

Information disclosure

HelpCenter Live 2.1.7 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by modules/HelpCenter/index.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.10 views

Information disclosure

CubeCart 4.4.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by modules/shipping/USPS/calc.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
UbuntuCve
UbuntuCve
added 2011/09/23 11:55 p.m.31 views

CVE-2011-3757

Moodle 2.0.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by webservice/xmlrpc/locallib.php and certain other files...

5CVSS5.9AI score0.01373EPSS
Exploits1References1
Prion
Prion
added 2011/09/23 11:55 p.m.12 views

Information disclosure

ClipBucket 2.0.9 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by plugins/signupcaptcha/signupcaptcha.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
UbuntuCve
UbuntuCve
added 2011/09/23 11:55 p.m.29 views

CVE-2011-3707

JanRain PHP OpenID library aka php-openid 2.2.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by Auth/Yadis/Yadis.php and certain other files...

5CVSS5.9AI score0.01373EPSS
Exploits1References1
Prion
Prion
added 2011/09/23 11:55 p.m.14 views

Information disclosure

Advanced Electron Forum AEF 1.0.8 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by languages/english/deletetopiclang.php...

5CVSS6.6AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.16 views

Information disclosure

cFTP r80 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by templates/sessioncheck.php and certain other files...

5CVSS6.7AI score0.06923EPSS
Exploits1References6Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.14 views

Information disclosure

Coppermine Photo Gallery CPG 1.5.12 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by include/inspekt.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder