Lucene search
K

3858 matches found

Cvelist
Cvelist
added 2011/09/23 11:0 p.m.18 views

CVE-2011-3731

e107 0.7.24 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by e107plugins/pdf/e107pdf.php and certain other files...

6.1AI score0.01335EPSS
Exploits1References3
Cvelist
Cvelist
added 2011/09/23 11:0 p.m.16 views

CVE-2011-3736

ExoPHPDesk 1.2.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by upgrades/upgrade9.php and certain other files...

6.1AI score0.01335EPSS
Exploits1References3
Cvelist
Cvelist
added 2011/09/23 11:0 p.m.19 views

CVE-2011-3711

BIGACE 2.7.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by system/libs/javascript.inc.php and certain other files...

6.1AI score0.01335EPSS
Exploits1References3
Cvelist
Cvelist
added 2011/09/23 11:0 p.m.17 views

CVE-2011-3722

Coppermine Photo Gallery CPG 1.5.12 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by include/inspekt.php and certain other files...

6.1AI score0.01335EPSS
Exploits1References3
Cvelist
Cvelist
added 2011/09/23 11:0 p.m.18 views

CVE-2011-3751

LifeType 1.2.10 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by plugins/badbehavior/pluginbadbehavior.class.php...

6.1AI score0.01335EPSS
Exploits1References3
CVE
CVE
added 2011/09/23 11:0 p.m.49 views

CVE-2011-3743

The CVE-2011-3743 entry concerns Hesk 2.2 where a remote attacker can obtain sensitive information by directly requesting certain PHP files, causing an error message that reveals the installation path (e.g., inc/footer.inc.php). This is described across multiple sources (NVD/Red Hat/ CVE records)...

5CVSS6.3AI score0.01335EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2011/09/23 11:0 p.m.42 views

CVE-2011-3740

Inffected software: FrontAccounting 2.3.1. The vulnerability arises from an information-disclosure flaw where a direct request to a PHP file (e.g., reporting/includes/fpdi/fpdi2tcpdf_bridge.php) causes an error message that reveals the installation path. This discreetly exposes partial confidenti...

5CVSS6.3AI score0.01372EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2011/09/23 11:0 p.m.38 views

CVE-2011-3737

CVE-2011-3737 affects eyeOS 2.2.0.0 and enables information disclosure by remote users who can trigger a direct request to certain .php files (e.g., apps/rmail/webmail/program/lib/Net/SMTP.php), causing error messages that reveal the installation path. The vulnerability stems from exposing intern...

5CVSS6.3AI score0.01335EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2011/09/23 11:0 p.m.39 views

CVE-2011-3733

Elgg 1.7.6 is affected by CVE-2011-3733. An information-disclosure flaw allows remote attackers to obtain sensitive data by making a direct request to certain PHP files, which reveals the installation path in an error message (as demonstrated by vendors/simpletest/test/visual_test.php and related...

5CVSS6.3AI score0.01335EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2011/09/23 11:0 p.m.76 views

CVE-2011-3730

CVE-2011-3730 concerns Drupal 7.0, where remote attackers can trigger an information disclosure by requesting a PHP file directly, causing an error message that reveals the installation path. Documentation cites examples such as modules/simpletest/tests/upgrade/drupal-6.upload.database.php and re...

5CVSS7.2AI score0.01644EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2011/09/23 11:0 p.m.51 views

CVE-2011-3728

CVE-2011-3728 concerns Dolphin 7.0.4, where remote attackers can obtain sensitive information by requesting a specific PHP file. The vulnerability exposes the installation path in an error message, demonstrated by files such as xmlrpc/BxDolXMLRPCProfileView.php. The issue is a information disclos...

5CVSS6.3AI score0.01229EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2011/09/23 11:0 p.m.39 views

CVE-2011-3720

ConceptCMS 5.3.1 and 5.3.3 (and possibly other versions) are affected by an information-disclosure vulnerability: remote attackers can obtain sensitive info via a direct request to a .php file, with an error message revealing the installation path (e.g., sys_libs/umlib/um_authserver.inc.php). Roo...

5CVSS6.4AI score0.0135EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2011/09/23 11:0 p.m.37 views

CVE-2011-3716

CVE-2011-3716 affects Claroline 1.9.7. The issue allows remote attackers to obtain sensitive information by requesting a .php file directly, which causes an error message to reveal the installation path (e.g., via work/connector/linker.cnr.php and similar files). The available documents do not pr...

5CVSS6.3AI score0.01335EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2011/09/23 11:0 p.m.41 views

CVE-2011-3697

Achievo 1.4.5 is affected by CVE-2011-3697. Affected component: PHP files (e.g., modules/graph/jpgraph/jpgraph_radar.php) that reveal the installation path via an error message when a direct request is made. This is an information-disclosure flaw allowing remote attackers to obtain sensitive path...

5CVSS6.3AI score0.01335EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2011/09/23 11:0 p.m.42 views

CVE-2011-3718

CMS Made Simple (CMSMS) 1.9.2 is affected by CVE-2011-3718. A remote attacker can obtain sensitive information by directly requesting a PHP file (e.g., modules/TinyMCE/TinyMCE.module.php), resulting in an error message that reveals the installation path. The vulnerability is an information-disclo...

5CVSS6.1AI score0.01336EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2011/09/23 11:0 p.m.45 views

CVE-2011-3714

CVE-2011-3714 affects ClanSphere 2010.0. The vulnerability allows remote attackers to obtain sensitive information through a direct request to a .php file (mods/board/attachment.php), causing an error message that reveals the installation path. The provided sources describe this path disclosure, ...

5CVSS6.3AI score0.01335EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2011/09/23 11:0 p.m.47 views

CVE-2011-3702

The vulnerability CVE-2011-3702 affects Ananta Gazelle 1.0. Affected software is Ananta Gazelle 1.0; exposure occurs via a direct request to a PHP file (e.g., modules/template.php) that reveals the installation path in an error message. This constitutes an information disclosure vulnerability, al...

5CVSS6.3AI score0.01335EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2011/09/23 11:0 p.m.51 views

CVE-2011-3745

CVE-2011-3745 affects HycusCMS 1.0.3. Affected component/file: templates/hycus_template/template.php. The issue is an information disclosure where a direct request to a PHP file reveals the installation path in an error message. No exploitation details are provided in the connected documents. No ...

5CVSS6.3AI score0.01335EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2011/09/23 11:0 p.m.44 views

CVE-2011-3752

CVE-2011-3752 affects LimeSurvey 1.90+ build9642-20101214. The issue is an information disclosure where remote attackers can trigger a direct request to a PHP file (e.g., admin/statistics.php) that reveals the installation path in an error message. This is described across multiple documents (NVD...

5CVSS6.3AI score0.01335EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2011/09/23 11:0 p.m.38 views

CVE-2011-3758

CVE-2011-3758 affects the package “::mound::” version 2.1.6 . A remote attacker can obtain sensitive information by directly requesting a PHP file, causing an error message that reveals the installation path (e.g., lib/smarty/libs/sysplugins/smarty_internal_template.php and related files). The pr...

5CVSS6.3AI score0.01229EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder