Home page logo
/

bugtraq logo Bugtraq mailing list archives

Path disclousure in MEGA PORTAL
From: bolok.boloke80 () gmail com
Date: Mon, 2 May 2011 08:35:18 -0600

Product: MEGA PORTAL
Vendor: http://www.got.my
Demo: http://www.got.my/MEGA-PORTAL/
Vulnerability Type: Path disclosure
Risk level: medium
Credit: Hector.x90

Vulnerability Details:
A remote user can determine the full path to the web root directory and other potentially sensitive information.
The following PoC is available:

http://[host]/themes/default/slideshow.php


  By Date           By Thread  

Current thread:
  • Path disclousure in MEGA PORTAL bolok . boloke80 (May 03)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]