Total
6955 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2011-3738 | 1 Fengoffice | 1 Feng Office | 2012-03-11 | 5.0 MEDIUM | N/A |
| Feng Office 1.7.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by public/upgrade/templates/layout.php and certain other files. | |||||
| CVE-2011-3739 | 1 Openfreeway | 1 Freeway | 2012-03-11 | 5.0 MEDIUM | N/A |
| Freeway 1.5 Alpha allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by templates/Freeway/boxes/last_product.php and certain other files. | |||||
| CVE-2011-3740 | 1 Frontaccounting | 1 Frontaccounting | 2012-03-11 | 5.0 MEDIUM | N/A |
| FrontAccounting 2.3.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by reporting/includes/fpdi/fpdi2tcpdf_bridge.php and certain other files. | |||||
| CVE-2011-3741 | 1 Ganglia | 1 Ganglia | 2012-03-11 | 5.0 MEDIUM | N/A |
| Ganglia 3.1.7 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by host_view.php and certain other files. | |||||
| CVE-2011-3742 | 1 Helpcenterlive | 1 Helpcenter Live | 2012-03-11 | 5.0 MEDIUM | N/A |
| HelpCenter Live 2.1.7 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by modules/HelpCenter/index.php and certain other files. | |||||
| CVE-2011-3743 | 1 Hesk | 1 Hesk | 2012-03-11 | 5.0 MEDIUM | N/A |
| Hesk 2.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by inc/footer.inc.php and certain other files. | |||||
| CVE-2011-3744 | 1 Htmlpurifier | 1 Html Purifier | 2012-03-11 | 5.0 MEDIUM | N/A |
| HTML Purifier 4.2.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by tests/PHPT/Reporter/SimpleTest.php and certain other files. | |||||
| CVE-2011-3745 | 1 Hycus | 1 Hycus Cms | 2012-03-11 | 5.0 MEDIUM | N/A |
| HycusCMS 1.0.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by templates/hycus_template/template.php. | |||||
| CVE-2011-3746 | 1 Jcow | 1 Jcow | 2012-03-11 | 5.0 MEDIUM | N/A |
| Jcow 4.2.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by themes/default/page.tpl.php and certain other files. | |||||
| CVE-2011-3747 | 1 Joomla | 1 Joomla\! | 2012-03-11 | 5.0 MEDIUM | N/A |
| Joomla! 1.6.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by libraries/phpmailer/language/phpmailer.lang-joomla.php. | |||||
| CVE-2011-3748 | 1 Kamads Classifieds | 1 2 B3 | 2012-03-11 | 5.0 MEDIUM | N/A |
| Kamads Classifieds 2_B3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by V2A_XHTML/style/view.php and certain other files. | |||||
| CVE-2011-3749 | 1 Maptools | 1 Ka-map | 2012-03-11 | 5.0 MEDIUM | N/A |
| ka-Map 1.0-20070205 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by test.php and certain other files. | |||||
| CVE-2011-3750 | 1 Kplaylist | 1 Kplaylist | 2012-03-11 | 5.0 MEDIUM | N/A |
| kPlaylist 1.8.502 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by getid3/getid3/write.id3v1.php and certain other files. | |||||
| CVE-2011-3751 | 1 Lifetype | 1 Lifetype | 2012-03-11 | 5.0 MEDIUM | N/A |
| LifeType 1.2.10 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by plugins/badbehavior/pluginbadbehavior.class.php. | |||||
| CVE-2011-3752 | 1 Limesurvey | 1 Limesurvey | 2012-03-11 | 5.0 MEDIUM | N/A |
| LimeSurvey 1.90+ build9642-20101214 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by admin/statistics.php and certain other files. | |||||
| CVE-2011-3753 | 1 Linpha | 1 Linpha | 2012-03-11 | 5.0 MEDIUM | N/A |
| LinPHA 1.3.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by viewer.php and certain other files. | |||||
| CVE-2011-3754 | 1 Mambo-foundation | 1 Mambo | 2012-03-11 | 5.0 MEDIUM | N/A |
| Mambo 4.6.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by includes/sef.php and certain other files. | |||||
| CVE-2011-3756 | 1 Microblog | 1 Microblog | 2012-03-11 | 5.0 MEDIUM | N/A |
| MicroBlog 0.9.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by init.php and certain other files. | |||||
| CVE-2011-3757 | 1 Moodle | 1 Moodle | 2012-03-11 | 5.0 MEDIUM | N/A |
| Moodle 2.0.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by webservice/xmlrpc/locallib.php and certain other files. | |||||
| CVE-2011-3758 | 1 Moundlabs | 1 \ | 2012-03-11 | 5.0 MEDIUM | N/A |
| ::mound:: 2.1.6 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by lib/smarty/libs/sysplugins/smarty_internal_template.php and certain other files. | |||||