Guestbook 4.0 – Sensitive Information Disclosure

Guestbook 4.0 – Sensitive Information Disclosure

漏洞ID 1053820 漏洞类型
发布时间 2003-04-10 更新时间 2003-04-10
图片[1]-Guestbook 4.0 – Sensitive Information Disclosure-安全小百科CVE编号 N/A
图片[2]-Guestbook 4.0 – Sensitive Information Disclosure-安全小百科CNNVD-ID N/A
漏洞平台 CGI CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/22482
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/7320/info

Guestbook has been reported prone to a sensitive information disclosure weakness.

An attacker may disclose sensitive information regarding the Super Guestbook install by sending a HTTP request for the Guest Book passwd file. Administration credentials are displayed in the attacker's browser. 

http://www.example.com/cgi-bin/guestbook/passwd

相关推荐: Sun JSSE/Java Plug-In/Java Web Start Incorrect Certificate Validation Vulnerability

Sun JSSE/Java Plug-In/Java Web Start Incorrect Certificate Validation Vulnerability 漏洞ID 1100932 漏洞类型 Design Error 发布时间 2003-01-23…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享