Lucene search
K

3858 matches found

Prion
Prion
added 2011/09/23 11:55 p.m.14 views

Information disclosure

Crafty Syntax 3.0.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by READMEFILES/livehelp.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
UbuntuCve
UbuntuCve
added 2011/09/23 11:55 p.m.35 views

CVE-2011-3709

b2evolution 3.3.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by locales/ruRU/ru-RU.locale.php and certain other files...

5CVSS5.9AI score0.01343EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2011/09/23 11:55 p.m.30 views

CVE-2011-3707

JanRain PHP OpenID library aka php-openid 2.2.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by Auth/Yadis/Yadis.php and certain other files...

5CVSS5.9AI score0.01373EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2011/09/23 11:55 p.m.32 views

CVE-2011-3744

HTML Purifier 4.2.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by tests/PHPT/Reporter/SimpleTest.php and certain other files...

5CVSS5.9AI score0.01372EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2011/09/23 11:55 p.m.30 views

CVE-2011-3755

MantisBT 1.2.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by viewallinc.php and certain other files...

5CVSS5.9AI score0.01414EPSS
Exploits1References1
Prion
Prion
added 2011/09/23 11:55 p.m.19 views

Information disclosure

b2evolution 3.3.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by locales/ruRU/ru-RU.locale.php and certain other files...

5CVSS6.6AI score0.01343EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.21 views

Information disclosure

CMS Made Simple CMSMS 1.9.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by modules/TinyMCE/TinyMCE.module.php and certain other files. NOTE: this might overlap CVE-2007-5444...

5CVSS6.3AI score0.01336EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.16 views

Information disclosure

Energine 2.3.8 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by core/framework/SimpleBuilder.class.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.17 views

Information disclosure

dotproject 2.1.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by style/dp-grey-theme/footer.php and certain other files...

5CVSS6.6AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.14 views

Information disclosure

Dolphin 7.0.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by xmlrpc/BxDolXMLRPCProfileView.php and certain other files...

5CVSS6.6AI score0.01229EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.16 views

Information disclosure

AlegroCart 1.2.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by common.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.15 views

Design/Logic Flaw

HTML Purifier 4.2.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by tests/PHPT/Reporter/SimpleTest.php and certain other files...

5CVSS6.5AI score0.01372EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.12 views

Information disclosure

e107 0.7.24 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by e107plugins/pdf/e107pdf.php and certain other files...

5CVSS6.6AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.16 views

Design/Logic Flaw

Jcow 4.2.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by themes/default/page.tpl.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.11 views

Information disclosure

eggBlog 4.1.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by lib/fckeditor/editor/dialog/fckspellerpages/spellerpages/server-scripts/spellchecker.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.14 views

Information disclosure

Moodle 2.0.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by webservice/xmlrpc/locallib.php and certain other files...

5CVSS6.6AI score0.01373EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.13 views

Information disclosure

bbPress 1.0.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by bb-templates/kakumei/view.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.13 views

Information disclosure

Claroline 1.9.7 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by work/connector/linker.cnr.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.14 views

Information disclosure

AneCMS 1.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by widgets/menu/index.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2011/09/23 11:55 p.m.15 views

Information disclosure

Ananta Gazelle 1.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by modules/template.php and certain other files...

5CVSS6.7AI score0.01335EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder