Ciamos 0.9.2 – ‘Highlight.php’ File Disclosure

25次阅读
没有评论

Ciamos 0.9.2 – ‘Highlight.php’ File Disclosure

漏洞ID 1054971 漏洞类型
发布时间 2005-03-19 更新时间 2005-03-19
Ciamos 0.9.2 - 'Highlight.php' File DisclosureCVE编号 N/A
Ciamos 0.9.2 - 'Highlight.php' File DisclosureCNNVD-ID N/A
漏洞平台 PHP CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/25242
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/12854/info

Ciamos is reported prone to a file disclosure vulnerability. The full scope of this vulnerability is not currently known, however, it is demonstrated that this issue may be leveraged to disclose the source of PHP files contained in a Ciamos installation.

A remote attacker may exploit this vulnerability to reveal files that contain potentially sensitive information. Information that is harvested in this manner may then be used to aid in further attacks against the software and the computer that is hosting the software.

http://www.example.com/ciamosinstalation/class/debug/highlight.php?file=ciamosinstallationpathmainfile.php&line=151#151

相关推荐: RealOne Player for Linux 2.2 Alpha – Insecure Configuration File Permission Privilege Escalation

RealOne Player for Linux 2.2 Alpha – Insecure Configuration File Permission Privilege Escalation 漏洞ID 1054153 漏洞类型 发布时间 2003-09-09…

正文完
 0