Justice Guestbook 1.3 - Full Path Disclosure

EDB-ID:

22444




Platform:

PHP

Date:

2003-03-29


source: https://www.securityfocus.com/bid/7234/info

A path disclosure vulnerability has been reported for Guestbook. The issue occurs when a request is made to the cfooter.php3 PHP script page.

Access to sensitive filesystem information may aid an attacker in launching further attacks against a target system

http://hostname/jgb_eng_php3/cfooter.php3