Exploit Mambo Site Server 4.0.11 - Full Path Disclosure

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
22087
Проверка EDB
  1. Пройдено
Автор
EURONYMOUS
Тип уязвимости
WEBAPPS
Платформа
PHP
CVE
cve-2002-2288
Дата публикации
2002-12-12
Код:
source: https://www.securityfocus.com/bid/6387/info

A vulnerability has been discovered in Mambo Site Server. Requesting the 'index.php' script with an invalid parameter will cause an error page to be generated containing the path of the Mambo script.

Information obtained by exploiting this issue may aid an attacker in launching further attacks against a target server.

It should be noted that this vulnerability was reported in Mambo Site Server 4.0.11. It is not yet known whether other versions are affected.

http://www.example.com/mambo/index.php?Itemid=invalidparameter
 
Источник
www.exploit-db.com

Похожие темы