CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2011/09/24 12:55 a.m.•15 views

CVE-2011-3790

Piwigo 2.1.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by tools/metadata.php and certain other files...

5CVSS6.1AI score0.01229EPSS

NVD•added 2011/09/24 12:55 a.m.•18 views

CVE-2011-3789

phpwcms 1.4.7 r412 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by template/incscript/frontendrender/disabled/majonavi.php and certain other files...

5CVSS6.1AI score0.01229EPSS

NVD•added 2011/09/24 12:55 a.m.•11 views

CVE-2011-3792

Pixelpost 1.7.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by includes/functionsfeeds.php and certain other files...

5CVSS6.1AI score0.01229EPSS

NVD•added 2011/09/24 12:55 a.m.•14 views

CVE-2011-3761

NuSOAP 0.9.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by nuSOAP/classes/class.wsdl.php and certain other files...

5CVSS6.1AI score0.01373EPSS

NVD•added 2011/09/24 12:55 a.m.•13 views

CVE-2011-3760

Nucleus 3.61 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by xmlrpc/apinucleus.inc.php and certain other files...

5CVSS6.1AI score0.0135EPSS

NVD•added 2011/09/24 12:55 a.m.•14 views

CVE-2011-3766

OrangeHRM 2.6.0.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by themes/orange/menu/Menu.php and certain other files...

5CVSS6.1AI score0.01242EPSS

Exploits0References4

NVD•added 2011/09/24 12:55 a.m.•10 views

CVE-2011-3762

OpenBlog 1.2.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by system/scaffolding/views/view.php and certain other files...

5CVSS6.1AI score0.0135EPSS

NVD•added 2011/09/24 12:55 a.m.•13 views

CVE-2011-3763

OpenCart 1.4.9.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by system/startup.php and certain other files...

5CVSS6.1AI score0.01618EPSS

NVD•added 2011/09/24 12:55 a.m.•13 views

CVE-2011-3765

Open-Realty 2.5.8 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by install/versions/upgrade115.inc.php and certain other files...

5CVSS6.1AI score0.01242EPSS

Exploits0References4

UbuntuCve•added 2011/09/24 12:55 a.m.•21 views

CVE-2011-3807

Textpattern 4.2.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by lib/txplibdb.php and certain other files...

5CVSS5.9AI score0.01229EPSS

Exploits0References1

Prion•added 2011/09/24 12:55 a.m.•14 views

Information disclosure

5CVSS6.6AI score0.01229EPSS

Prion•added 2011/09/24 12:55 a.m.•11 views

Information disclosure

ReOS 2.0.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by padmin/blocks/vergal.php and certain other files...

Prion•added 2011/09/24 12:55 a.m.•13 views

Information disclosure

Prion•added 2011/09/24 12:55 a.m.•18 views

Information disclosure

Virtual War aka VWar 1.5.0r15 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by includes/language/dutch.inc.php and certain other files...

5CVSS6.6AI score0.01229EPSS

Prion•added 2011/09/24 12:55 a.m.•18 views

Information disclosure

Zikula 1.2.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by themes/voodoodolly/version.php and certain other files...

Prion•added 2011/09/24 12:55 a.m.•19 views

Information disclosure

Serendipity 1.5.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by templates/newspaper/layout.php and certain other files...

5CVSS6.6AI score0.01229EPSS

Prion•added 2011/09/24 12:55 a.m.•17 views

Information disclosure

WoW Server Status 4.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by status.php and certain other files...