Foojan PHP Weblog allows remote attackers to obtain sensitive information via (1) a direct request to /daylinks/index.php or (2) a negative value in the daylinkspage parameter to index.php, which reveal the path in an error message.
References
Link | Resource |
---|---|
http://marc.info/?l=bugtraq&m=112491140712884&w=2 |
Configurations
History
No history.
Information
Published : 2005-08-30 11:45
Updated : 2024-02-04 16:52
NVD link : CVE-2005-2722
Mitre link : CVE-2005-2722
CVE.ORG link : CVE-2005-2722
JSON object : View
Products Affected
foojan
- php_weblog
CWE