257521
|
- |
|
wordpress
|
wordpress
|
WordPress 2.9.2 and 3.0.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by wp-a…
|
CWE-200
Information Exposure
|
CVE-2011-3818
|
2012-05-21 13:00 |
2011-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257522
|
- |
|
53x11
|
wow_server_status
|
WoW Server Status 4.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by status.p…
|
CWE-200
Information Exposure
|
CVE-2011-3819
|
2012-05-21 13:00 |
2011-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257523
|
- |
|
webmastersite
|
wsn_software
|
WSN Software 6.0.6 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by includes/pr…
|
CWE-200
Information Exposure
|
CVE-2011-3820
|
2012-05-21 13:00 |
2011-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257524
|
- |
|
xajax-project
|
xajax
|
xajax 0.6 beta1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by xajax_core/plu…
|
CWE-200
Information Exposure
|
CVE-2011-3821
|
2012-05-21 13:00 |
2011-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257525
|
- |
|
xoops
|
xoops
|
XOOPS 2.5.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by modules/system/xoo…
|
CWE-200
Information Exposure
|
CVE-2011-3822
|
2012-05-21 13:00 |
2011-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257526
|
- |
|
yamamah
|
yamamah
|
Yamamah 1.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by themes/default/ind…
|
CWE-200
Information Exposure
|
CVE-2011-3823
|
2012-05-21 13:00 |
2011-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257527
|
- |
|
yourls
|
yourls
|
Your Own URL Shortener (YOURLS) 1.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrat…
|
CWE-200
Information Exposure
|
CVE-2011-3824
|
2012-05-21 13:00 |
2011-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257528
|
- |
|
zend
|
framework server
|
Zend Framework 1.11.3 in Zend Server CE 5.1.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as …
|
CWE-200
Information Exposure
|
CVE-2011-3825
|
2012-05-21 13:00 |
2011-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257529
|
- |
|
zikula
|
zikula
|
Zikula 1.2.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by themes/voodoodoll…
|
CWE-200
Information Exposure
|
CVE-2011-3826
|
2012-05-21 13:00 |
2011-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
257530
|
- |
|
mhproducts
|
download_center
|
SQL injection vulnerability in admin/login.php in MHP DownloadScript (aka MH Products Download Center) 2.2 allows remote attackers to execute arbitrary SQL commands via the Name parameter. NOTE: som…
|
CWE-89
SQL Injection
|
CVE-2010-4842
|
2012-05-21 13:00 |
2011-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|