Exploit Sage 1.0 Beta 3 - Content Management System Full Path Disclosure

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
22269
Проверка EDB
  1. Пройдено
Автор
EURONYMOUS
Тип уязвимости
REMOTE
Платформа
WINDOWS
CVE
cve-2003-1242
Дата публикации
2003-02-20
Код:
source: https://www.securityfocus.com/bid/6893/info

Sage Content Management System contains a path disclosure vulnerability. When a request is made for a module that does not exist, the returned error message contains the full path to the Sage installation directory.

Disclosed path information could be used to launch further attacks against the system. 

http://hostname/?mod=some_thing&op=browse

http://hostname/?mod=node&nid=some_thing&op=view
 
Источник
www.exploit-db.com

Похожие темы