4 matches found
CVE-2006-1488
ActiveCampaign SupportTrio 2.5 allows remote attackers to obtain the full path of the server via invalid 1 article or 2 print parameters in a kb action to index.php, or 3 an invalid category parameter to modules/KB/pdf.php, which leaks the path in an error message...
CVE-2006-1488
ActiveCampaign SupportTrio 2.5 allows remote attackers to obtain the full path of the server via invalid 1 article or 2 print parameters in a kb action to index.php, or 3 an invalid category parameter to modules/KB/pdf.php, which leaks the path in an error message...
CVE-2006-1488
ActiveCampaign SupportTrio 2.5 is affected. The issue exposes the server’s full path via error messages when handling (1) invalid article or (2) invalid print parameters in a kb action to index.php, or (3) an invalid category parameter to modules/KB/pdf.php. Root cause: error messages leak path i...
ActiveCampaign SupportTrio 2.5 vuln.
ActiveCampaign SupportTrio 2.5 vuln. Vuln. discovered by : r0t Date: 28 march 2006 vendor:http://www.activecampaign.com/ affected versions: 2.50.2 orginal advisory:http://pridels.blogspot.com/2006/03/activecampaign-supporttrio-25-vuln.html Vuln. description: ActiveCampaign SupportTrio contains a...