CVE-2004-2671
N/A
N/A
Summary
mod.php in eNdonesia 8.3 allows remote attackers to obtain sensitive information via certain direct requests, and certain requests with invalid parameter values, which reveal the path in various error messages, as demonstrated by the (1) mod and (2) cid parameters.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.securityfocus.com/archive/1/370855
- http://secunia.com/advisories/12231
- http://echo.or.id/adv/adv02-y3dips-2004.txt
- http://securitytracker.com/id?1010864
- http://www.securityfocus.com/bid/8507
- https://exchange.xforce.ibmcloud.com/vulnerabilities/13042
References
- http://www.securityfocus.com/archive/1/370855
- http://secunia.com/advisories/12231
- http://echo.or.id/adv/adv02-y3dips-2004.txt
- http://securitytracker.com/id?1010864
- http://www.securityfocus.com/bid/8507
- https://exchange.xforce.ibmcloud.com/vulnerabilities/13042
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.