Total
6955 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2011-3716 | 1 Claroline | 1 Claroline | 2012-03-12 | 5.0 MEDIUM | N/A |
| Claroline 1.9.7 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by work/connector/linker.cnr.php and certain other files. | |||||
| CVE-2011-3717 | 1 Clip-bucket | 1 Clipbucket | 2012-03-12 | 5.0 MEDIUM | N/A |
| ClipBucket 2.0.9 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by plugins/signup_captcha/signup_captcha.php and certain other files. | |||||
| CVE-2011-3718 | 1 Cmsmadesimple | 1 Cms Made Simple | 2012-03-12 | 5.0 MEDIUM | N/A |
| CMS Made Simple (CMSMS) 1.9.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by modules/TinyMCE/TinyMCE.module.php and certain other files. NOTE: this might overlap CVE-2007-5444. | |||||
| CVE-2011-3719 | 1 Codeigniter | 1 Codeigniter | 2012-03-12 | 5.0 MEDIUM | N/A |
| CodeIgniter 1.7.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by system/scaffolding/views/view.php and certain other files. | |||||
| CVE-2011-3721 | 1 Concrete5 | 1 Concrete | 2012-03-12 | 5.0 MEDIUM | N/A |
| concrete 5.4.0.5, 5.4.1, and 5.4.1.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by tools/spellchecker_service.php and certain other files. | |||||
| CVE-2011-3722 | 1 Coppermine-gallery | 1 Coppermine Photo Gallery | 2012-03-12 | 5.0 MEDIUM | N/A |
| Coppermine Photo Gallery (CPG) 1.5.12 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by include/inspekt.php and certain other files. | |||||
| CVE-2011-3723 | 1 Craftysyntax | 1 Crafty Syntax | 2012-03-12 | 5.0 MEDIUM | N/A |
| Crafty Syntax 3.0.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by README_FILES/livehelp.php and certain other files. | |||||
| CVE-2011-3724 | 1 Cubecart | 1 Cubecart | 2012-03-12 | 5.0 MEDIUM | N/A |
| CubeCart 4.4.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by modules/shipping/USPS/calc.php and certain other files. | |||||
| CVE-2011-3725 | 1 Deluxebb | 1 Deluxebb | 2012-03-12 | 5.0 MEDIUM | N/A |
| DeluxeBB 1.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by header_html.php. | |||||
| CVE-2011-3726 | 1 Docebo | 1 Docebolms | 2012-03-12 | 5.0 MEDIUM | N/A |
| DoceboLMS 4.0.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by views/dummy/show.php and certain other files. | |||||
| CVE-2011-3728 | 1 Boonex | 1 Dolphin | 2012-03-12 | 5.0 MEDIUM | N/A |
| Dolphin 7.0.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by xmlrpc/BxDolXMLRPCProfileView.php and certain other files. | |||||
| CVE-2011-3729 | 1 Dotproject | 1 Dotproject | 2012-03-12 | 5.0 MEDIUM | N/A |
| dotproject 2.1.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by style/dp-grey-theme/footer.php and certain other files. | |||||
| CVE-2011-3730 | 1 Drupal | 1 Drupal | 2012-03-12 | 5.0 MEDIUM | N/A |
| Drupal 7.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by modules/simpletest/tests/upgrade/drupal-6.upload.database.php and certain other files. | |||||
| CVE-2011-3731 | 1 E107 | 1 E107 | 2012-03-12 | 5.0 MEDIUM | N/A |
| e107 0.7.24 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by e107_plugins/pdf/e107pdf.php and certain other files. | |||||
| CVE-2011-3732 | 1 Eggblog | 1 Eggblog | 2012-03-12 | 5.0 MEDIUM | N/A |
| eggBlog 4.1.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by _lib/fckeditor/editor/dialog/fck_spellerpages/spellerpages/server-scripts/spellchecker.php and certain other files. | |||||
| CVE-2011-3733 | 1 Elgg | 1 Elgg | 2012-03-11 | 5.0 MEDIUM | N/A |
| Elgg 1.7.6 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by vendors/simpletest/test/visual_test.php and certain other files. | |||||
| CVE-2011-3734 | 1 Energine | 1 Energine | 2012-03-11 | 5.0 MEDIUM | N/A |
| Energine 2.3.8 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by core/framework/SimpleBuilder.class.php and certain other files. | |||||
| CVE-2011-3735 | 1 Escortwebsitedesign | 1 Escort-agency-cms | 2012-03-11 | 5.0 MEDIUM | N/A |
| Escort Agency CMS (aka escort-agency-cms) allows remote attackers to obtain sensitive information via crafted array parameters in a request to a .php file, which reveals the installation path in an error message, as demonstrated by makethumb.php and certain other files. | |||||
| CVE-2011-3736 | 1 Exoscripts | 1 Exophpdesk | 2012-03-11 | 5.0 MEDIUM | N/A |
| ExoPHPDesk 1.2.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by upgrades/upgrade9.php and certain other files. | |||||
| CVE-2011-3737 | 1 Eyeos | 1 Eyeos | 2012-03-11 | 5.0 MEDIUM | N/A |
| eyeOS 2.2.0.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by apps/rmail/webmail/program/lib/Net/SMTP.php and certain other files. | |||||