|
263931
|
- |
|
cubecart
|
cubecart
|
CubeCart 4.4.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by modules/shippin…
|
CWE-200
Information Exposure
|
CVE-2011-3724
|
2012-03-13 13:00 |
2011-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263932
|
- |
|
deluxebb
|
deluxebb
|
DeluxeBB 1.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by header_html.php.
|
CWE-200
Information Exposure
|
CVE-2011-3725
|
2012-03-13 13:00 |
2011-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263933
|
- |
|
docebo
|
docebolms
|
DoceboLMS 4.0.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by views/dummy/sh…
|
CWE-200
Information Exposure
|
CVE-2011-3726
|
2012-03-13 13:00 |
2011-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263934
|
- |
|
boonex
|
dolphin
|
Dolphin 7.0.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by xmlrpc/BxDolXMLR…
|
CWE-200
Information Exposure
|
CVE-2011-3728
|
2012-03-13 13:00 |
2011-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263935
|
- |
|
dotproject
|
dotproject
|
dotproject 2.1.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by style/dp-grey…
|
CWE-200
Information Exposure
|
CVE-2011-3729
|
2012-03-13 13:00 |
2011-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263936
|
- |
|
drupal
|
drupal
|
Drupal 7.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by modules/simpletest/…
|
CWE-200
Information Exposure
|
CVE-2011-3730
|
2012-03-13 13:00 |
2011-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263937
|
- |
|
e107
|
e107
|
e107 0.7.24 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by e107_plugins/pdf/e…
|
CWE-200
Information Exposure
|
CVE-2011-3731
|
2012-03-13 13:00 |
2011-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263938
|
- |
|
eggblog
|
eggblog
|
eggBlog 4.1.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by _lib/fckeditor/e…
|
CWE-200
Information Exposure
|
CVE-2011-3732
|
2012-03-13 13:00 |
2011-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263939
|
- |
|
mahara
|
mahara
|
The get_dataroot_image_path function in lib/file.php in Mahara before 1.4.1 does not properly validate uploaded image files, which allows remote attackers to cause a denial of service (memory consump…
|
CWE-20
Improper Input Validation
|
CVE-2011-2772
|
2012-03-12 13:00 |
2011-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
263940
|
- |
|
conky
|
conky
|
The getSkillname function in the eve module in Conky 1.8.1 and earlier allows local users to overwrite arbitrary files via a symlink attack on /tmp/.cesf.
|
CWE-59
Link Following
|
CVE-2011-3616
|
2012-03-12 13:00 |
2011-11-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
