Описание
Attachmax Dolphin 2.1.0 and earlier does not properly protect info.php in the main folder, which allows remote attackers to obtain sensitive information via a direct request, which invokes the phpinfo function. NOTE: some of these details are obtained from third party information.
Attachmax Dolphin 2.1.0 and earlier does not properly protect info.php in the main folder, which allows remote attackers to obtain sensitive information via a direct request, which invokes the phpinfo function. NOTE: some of these details are obtained from third party information.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2008-4207
- https://www.exploit-db.com/exploits/6468
- http://e-rdc.org/v1/news.php?readmore=108
- http://osvdb.org/48271
- http://secunia.com/advisories/31794
- http://securityreason.com/securityalert/4307
- http://www.securityfocus.com/archive/1/496427/100/0/threaded
- http://www.securityfocus.com/bid/31207
Связанные уязвимости
Attachmax Dolphin 2.1.0 and earlier does not properly protect info.php in the main folder, which allows remote attackers to obtain sensitive information via a direct request, which invokes the phpinfo function. NOTE: some of these details are obtained from third party information.