Snitz Forums 2000 3.4.05 allows remote attackers to obtain sensitive information via a direct request to forum/whereami.asp, which reveals the database path.
References
Configurations
History
No history.
Information
Published : 2008-01-08 19:46
Updated : 2023-12-10 10:40
NVD link : CVE-2008-0136
Mitre link : CVE-2008-0136
CVE.ORG link : CVE-2008-0136
JSON object : View
Products Affected
snitz_communications
- snitz_forums_2000
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor