XOOPS 2.0 XoopsOption – Information Disclosure

25次阅读
没有评论

XOOPS 2.0 XoopsOption – Information Disclosure

漏洞ID 1107251 漏洞类型
发布时间 2003-03-20 更新时间 2003-03-20
XOOPS 2.0 XoopsOption - Information DisclosureCVE编号 CVE-2003-1550
XOOPS 2.0 XoopsOption - Information DisclosureCNNVD-ID N/A
漏洞平台 PHP CVSS评分 5.0
|漏洞来源
https://www.exploit-db.com/exploits/22389
|漏洞详情
This vulnerability has been modified since it was last analyzed by the NVD. It is awaiting reanalysis which may result in further changes to the information provided.
|漏洞EXP
source: http://www.securityfocus.com/bid/7149/info

XOOPS has been reported vulnerable to an information disclosure vulnerability. According to the report, path information and other sensitive data may be output in server error messages. Information obtained in this manner may be used by an attacker to launch further attacks against a vulnerable system. This vulnerability was reported to affect XOOPS version 2.0. It is not currently known if other versions are affected.

http://www.example.com/index.php?xoopsOption=any_word
|参考资料
resource:Exploit
hyperlink:http://marc.info/?l=bugtraq&m;=104820295115420&w;=2
resource:
hyperlink:http://marc.info/?l=bugtraq&m;=104887510828106&w;=2
resource:Exploit
hyperlink:http://www.securityfocus.com/bid/7149
resource:
hyperlink:https://exchange.xforce.ibmcloud.com/vulnerabilities/11587

相关推荐: mcNews 1.x – File Disclosure

mcNews 1.x – File Disclosure 漏洞ID 1053586 漏洞类型 发布时间 2002-05-17 更新时间 2002-05-17 CVE编号 N/A CNNVD-ID N/A 漏洞平台 PHP CVSS评分 N/A |漏洞来源 ht…

正文完
 0