Описание
Net Portal Dynamic System (NPDS) 5.10 and earlier allows remote attackers to obtain sensitive information via a direct request to (1) header.php, (2) contact.php, or (3) forum_extender.php, which reveals the path in an error message.
Ссылки
- Vendor Advisory
- ExploitVendor Advisory
- Vendor Advisory
- Vendor Advisory
- ExploitVendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 5.10 (включая)
Одно из
cpe:2.3:a:npds:npds:*:*:*:*:*:*:*:*
cpe:2.3:a:npds:npds:4.8:*:*:*:*:*:*:*
EPSS
Процентиль: 78%
0.01107
Низкий
5 Medium
CVSS2
Дефекты
CWE-200
Связанные уязвимости
github
почти 4 года назад
Net Portal Dynamic System (NPDS) 5.10 and earlier allows remote attackers to obtain sensitive information via a direct request to (1) header.php, (2) contact.php, or (3) forum_extender.php, which reveals the path in an error message.
EPSS
Процентиль: 78%
0.01107
Низкий
5 Medium
CVSS2
Дефекты
CWE-200