9 matches found
CVE-2017-6514
WordPress 4.7.2 mishandles listings of post authors, which allows remote attackers to obtain sensitive information Path Disclosure via a /wp-json/oembed/1.0/embed?url= request, related to the "authorname":" substring...
EUVD-2004-1990
Malware in sbrugna...
EUVD-2016-3146
Malware in sbrugna...
CVE-2007-4872
SimpNews 2.41.03 allows remote attackers to obtain sensitive information via 1 an invalid lang parameter to admin/index.php; or a direct request to 2 admin/dbginfos.php, 3 admin/heading.php, or 4 evsearch.php; which reveals the path in various error messages...
CVE-2007-2066
UseBB before 1.0.6 allows remote attackers to obtain sensitive information via a request with unspecified GET or POST parameters to an unspecified script, which reveals the path in an error message...
CVE-2005-2895
setcookie.php in PBLang 4.65, and possibly earlier versions, allows remote attackers to obtain sensitive information via a %00 a null byte in the u parameter, which reveals the path in an error message...
CVE-2005-1497
index.php in myBloggie 2.1.1 allows remote attackers to obtain sensitive information via an invalid postid parameter, which reveals the path in an error message...
CVE-2005-0572
index.php in phpWebSite 0.10.0 and earlier allows remote attackers to obtain sensitive information via an invalid SEAsearchmodule parameter, which reveals the path in a PHP error message...
[ARL02-A06] Black Tie Project System Information Path Disclosure Vulnerability
+/--------------- ALPER Research Labs -----/--------/+ +/--------------- Security Advisory ----/---------/+ +/--------------- ID: ARL02-A06 ---/----------/+ +/--------------- [email protected] --/-----------/+ Advisory Information -------------------- Name : Black Tie Project System Information...