Back to search
CVE-2002-2288
Published: Oct 18, 2007
Modified: Aug 8, 2024
PUBLISHED
Description
Mambo Site Server 4.0.11 allows remote attackers to obtain the physical path of the server via an HTTP request to index.php with a parameter that does not exist, which causes the path to be leaked in an error message.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
mambo-index-path-disclosure(10856)
vdb-entry
x_refsource_XF
6387
vdb-entry
x_refsource_BID
20021212 Multiple Mambo Site Server sec-weaknesses
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now