Описание
imageview.php in SGallery 1.01 allows remote attackers to obtain sensitive information via an HTTP request with (1) idalbum and (2) idimage unset, which reveals the installation path in an error message for the sql_fetch_row function.
imageview.php in SGallery 1.01 allows remote attackers to obtain sensitive information via an HTTP request with (1) idalbum and (2) idimage unset, which reveals the installation path in an error message for the sql_fetch_row function.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2005-0375
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18877
- http://lists.grok.org.uk/pipermail/full-disclosure/2005-January/030844.html
- http://marc.info/?l=bugtraq&m=110557050700947&w=2
- http://securitytracker.com/id?1012868
- http://www.waraxe.us/advisory-39.html
EPSS
Процентиль: 68%
0.0057
Низкий
CVE ID
Связанные уязвимости
nvd
почти 21 год назад
imageview.php in SGallery 1.01 allows remote attackers to obtain sensitive information via an HTTP request with (1) idalbum and (2) idimage unset, which reveals the installation path in an error message for the sql_fetch_row function.
EPSS
Процентиль: 68%
0.0057
Низкий