Exponent CMS 0.96.6 Alpha and earlier allows remote attackers to obtain path information via a direct request for (1) sdk/blanks/formcontrol.php and (2) sdk/blanks/file_modules.php.
References
Configurations
History
No history.
Information
Published : 2007-04-25 17:19
Updated : 2024-02-04 17:13
NVD link : CVE-2007-2253
Mitre link : CVE-2007-2253
CVE.ORG link : CVE-2007-2253
JSON object : View
Products Affected
exponent
- exponent_cms
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor