exploitDog

GHSA-4fwm-xx33-45wp

Опубликовано: 29 апр. 2022

Источник: github

Github: Не прошло ревью

Описание

Tiki CMS/Groupware (TikiWiki) 1.8.1 and earlier allows remote attackers to gain sensitive information via a direct request to (1) banner_click.php, (2) categorize.php, (3) tiki-admin_include_directory.php, (4) tiki-directory_search.php, which reveal the web server path in an error message.

Tiki CMS/Groupware (TikiWiki) 1.8.1 and earlier allows remote attackers to gain sensitive information via a direct request to (1) banner_click.php, (2) categorize.php, (3) tiki-admin_include_directory.php, (4) tiki-directory_search.php, which reveal the web server path in an error message.

Ссылки

EPSS

Процентиль: 91%

0.06739

Низкий

CVE ID

Дефекты

CWE-200

Связанные уязвимости

CVE-2004-1923

nvd

почти 22 года назад

Tiki CMS/Groupware (TikiWiki) 1.8.1 and earlier allows remote attackers to gain sensitive information via a direct request to (1) banner_click.php, (2) categorize.php, (3) tiki-admin_include_directory.php, (4) tiki-directory_search.php, which reveal the web server path in an error message.

EPSS

Процентиль: 91%

0.06739

Низкий

CVE ID

Дефекты

CWE-200