exploitDog

CVE-2006-0113

Опубликовано: 07 янв. 2006

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Enhanced Simple PHP Gallery 1.7 allows remote attackers to obtain the full path of the application via a direct request to sp_helper_functions.php, which leaks the pathname in an error message.

Ссылки

http://osvdb.org/ref/22/22201-espg.txt
Exploit
http://secunia.com/advisories/18310
Vendor Advisory
http://www.osvdb.org/22417
http://osvdb.org/ref/22/22201-espg.txt
Exploit
http://secunia.com/advisories/18310
Vendor Advisory
http://www.osvdb.org/22417

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:enhanced_simple_php_gallery:enhanced_simple_php_gallery:1.7:*:*:*:*:*:*:*

EPSS

Процентиль: 64%

0.00462

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-xh7f-mchx-vxh4

github

почти 4 года назад

Enhanced Simple PHP Gallery 1.7 allows remote attackers to obtain the full path of the application via a direct request to sp_helper_functions.php, which leaks the pathname in an error message.

EPSS

Процентиль: 64%

0.00462

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other