IBM Security Access Manager Information Disclosure Vulnerability (CNVD-2017-01307)

IBM Security Access Manager is a security access manager from IBM USA. A security vulnerability exists in IBM Security Access Manager. An attacker could exploit the vulnerability by entering an invalid file name to gain access to sensitive information...

Remote file inclusion

index.php in Phpclanwebsite 1.23.1 allows remote authenticated users to obtain the installation path by specifying an invalid file name to the uploader page, as demonstrated by "", which will display the full path of uploader.php. NOTE: this might be the result of a file inclusion vulnerability...