Описание
fantastico in Cpanel does not properly handle when it has insufficient permissions to perform certain file operations, which allows remote authenticated users to obtain the full pathname, which is leaked in a PHP error message.
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:a:netenberg:fantastico_de_luxe:*:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:*:*:*:*:*:*:*:*
EPSS
Процентиль: 41%
0.00192
Низкий
4 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
ubuntu
почти 20 лет назад
fantastico in Cpanel does not properly handle when it has insufficient permissions to perform certain file operations, which allows remote authenticated users to obtain the full pathname, which is leaked in a PHP error message.
github
почти 4 года назад
fantastico in Cpanel does not properly handle when it has insufficient permissions to perform certain file operations, which allows remote authenticated users to obtain the full pathname, which is leaked in a PHP error message.
EPSS
Процентиль: 41%
0.00192
Низкий
4 Medium
CVSS2
Дефекты
CWE-264