Описание
John Lim ADOdb Library for PHP before 4.23 allows remote attackers to obtain sensitive information via direct requests to certain scripts that result in an undefined value of ADODB_DIR, which reveals the installation path in an error message.
Уязвимые конфигурации
Конфигурация 1Версия до 4.22 (включая)
Одно из
cpe:2.3:a:john_lim:adodb:*:*:*:*:*:*:*:*
cpe:2.3:a:john_lim:adodb:3.94:*:*:*:*:*:*:*
cpe:2.3:a:john_lim:adodb:4.00:*:*:*:*:*:*:*
cpe:2.3:a:john_lim:adodb:4.01:*:*:*:*:*:*:*
cpe:2.3:a:john_lim:adodb:4.02:*:*:*:*:*:*:*
cpe:2.3:a:john_lim:adodb:4.03:*:*:*:*:*:*:*
cpe:2.3:a:john_lim:adodb:4.04:*:*:*:*:*:*:*
cpe:2.3:a:john_lim:adodb:4.05:*:*:*:*:*:*:*
cpe:2.3:a:john_lim:adodb:4.10:*:*:*:*:*:*:*
cpe:2.3:a:john_lim:adodb:4.11:*:*:*:*:*:*:*
cpe:2.3:a:john_lim:adodb:4.20:*:*:*:*:*:*:*
cpe:2.3:a:john_lim:adodb:4.21:*:*:*:*:*:*:*
EPSS
Процентиль: 56%
0.00333
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
debian
больше 20 лет назад
John Lim ADOdb Library for PHP before 4.23 allows remote attackers to ...
github
больше 3 лет назад
John Lim ADOdb Library for PHP before 4.23 allows remote attackers to obtain sensitive information via direct requests to certain scripts that result in an undefined value of ADODB_DIR, which reveals the installation path in an error message.
EPSS
Процентиль: 56%
0.00333
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other