WordPress 2.0.3 allows remote attackers to obtain the installation path via a direct request to various files, such as those in the (1) wp-admin, (2) wp-content, and (3) wp-includes directories, possibly due to uninitialized variables.
References
Configurations
Information
Published : 2006-07-06 13:05
Updated : 2018-10-18 09:47
NVD link : CVE-2006-3390
Mitre link : CVE-2006-3390
JSON object : View
CWE
Products Affected
wordpress
- wordpress