Total
210374 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2011-3703 | 1 Anecms | 1 Anecms | 2012-03-12 | 5.0 MEDIUM | N/A |
| AneCMS 1.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by widgets/menu/index.php and certain other files. | |||||
| CVE-2011-3704 | 1 Apprain | 1 Apprain | 2012-03-12 | 5.0 MEDIUM | N/A |
| appRain 0.1.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by cron.php. | |||||
| CVE-2011-3705 | 1 Michael Armbruster | 1 Arctic Fox Cms | 2012-03-12 | 5.0 MEDIUM | N/A |
| Arctic Fox CMS 0.9.4 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by acp/includes/edit.inc.php and certain other files. | |||||
| CVE-2011-3706 | 1 Atutor | 1 Atutor | 2012-03-12 | 5.0 MEDIUM | N/A |
| ATutor 2.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by users/tool_settings.inc.php and certain other files. | |||||
| CVE-2011-3707 | 1 Janrain | 1 Php-openid | 2012-03-12 | 5.0 MEDIUM | N/A |
| JanRain PHP OpenID library (aka php-openid) 2.2.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by Auth/Yadis/Yadis.php and certain other files. | |||||
| CVE-2011-3708 | 1 Automne-cms | 1 Automne | 2012-03-12 | 5.0 MEDIUM | N/A |
| Automne 4.0.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by admin/page-redirect-info.php. | |||||
| CVE-2011-3709 | 1 B2evolution | 1 B2evolution | 2012-03-12 | 5.0 MEDIUM | N/A |
| b2evolution 3.3.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by locales/ru_RU/ru-RU.locale.php and certain other files. | |||||
| CVE-2011-3710 | 1 Bbpress | 1 Bbpress | 2012-03-12 | 5.0 MEDIUM | N/A |
| bbPress 1.0.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by bb-templates/kakumei/view.php and certain other files. | |||||
| CVE-2011-3711 | 1 Bigace | 1 Bigace | 2012-03-12 | 5.0 MEDIUM | N/A |
| BIGACE 2.7.5 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by system/libs/javascript.inc.php and certain other files. | |||||
| CVE-2011-3712 | 1 Cakefoundation | 1 Cakephp | 2012-03-12 | 5.0 MEDIUM | N/A |
| CakePHP 1.3.7 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by dispatcher.php and certain other files. | |||||
| CVE-2011-3714 | 1 Csphere | 1 Clansphere | 2012-03-12 | 5.0 MEDIUM | N/A |
| ClanSphere 2010.0 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by mods/board/attachment.php. | |||||
| CVE-2011-3715 | 1 Clantiger | 1 Clantiger | 2012-03-12 | 5.0 MEDIUM | N/A |
| ClanTiger 1.1.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by widgets/statistics/statistics.php and certain other files. | |||||
| CVE-2011-3716 | 1 Claroline | 1 Claroline | 2012-03-12 | 5.0 MEDIUM | N/A |
| Claroline 1.9.7 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by work/connector/linker.cnr.php and certain other files. | |||||
| CVE-2011-3717 | 1 Clip-bucket | 1 Clipbucket | 2012-03-12 | 5.0 MEDIUM | N/A |
| ClipBucket 2.0.9 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by plugins/signup_captcha/signup_captcha.php and certain other files. | |||||
| CVE-2011-3718 | 1 Cmsmadesimple | 1 Cms Made Simple | 2012-03-12 | 5.0 MEDIUM | N/A |
| CMS Made Simple (CMSMS) 1.9.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by modules/TinyMCE/TinyMCE.module.php and certain other files. NOTE: this might overlap CVE-2007-5444. | |||||
| CVE-2011-3719 | 1 Codeigniter | 1 Codeigniter | 2012-03-12 | 5.0 MEDIUM | N/A |
| CodeIgniter 1.7.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by system/scaffolding/views/view.php and certain other files. | |||||
| CVE-2011-3721 | 1 Concrete5 | 1 Concrete | 2012-03-12 | 5.0 MEDIUM | N/A |
| concrete 5.4.0.5, 5.4.1, and 5.4.1.1 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by tools/spellchecker_service.php and certain other files. | |||||
| CVE-2011-3722 | 1 Coppermine-gallery | 1 Coppermine Photo Gallery | 2012-03-12 | 5.0 MEDIUM | N/A |
| Coppermine Photo Gallery (CPG) 1.5.12 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by include/inspekt.php and certain other files. | |||||
| CVE-2011-3723 | 1 Craftysyntax | 1 Crafty Syntax | 2012-03-12 | 5.0 MEDIUM | N/A |
| Crafty Syntax 3.0.2 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by README_FILES/livehelp.php and certain other files. | |||||
| CVE-2011-3724 | 1 Cubecart | 1 Cubecart | 2012-03-12 | 5.0 MEDIUM | N/A |
| CubeCart 4.4.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by modules/shipping/USPS/calc.php and certain other files. | |||||