index.php in phpAdultSite CMS, possibly 2.3.2, allows remote attackers to obtain the full installation path via an invalid results_per_page parameter, which leaks the path in an error message. NOTE: this issue might be resultant from a separate SQL injection vulnerability.
References
Configurations
History
No history.
Information
Published : 2009-08-19 05:24
Updated : 2024-02-28 11:21
NVD link : CVE-2008-6981
Mitre link : CVE-2008-6981
CVE.ORG link : CVE-2008-6981
JSON object : View
Products Affected
phpadultsite
- phpadultsite_cms
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor