Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2002-0282
Description:DCP-Portal 3.7 through 4.5 allows remote attackers to obtain the physical path of the server via (1) a direct request to add_user.php, or via an invalid new_language parameter in (2) contents.php, (3) categories.php, or (4) files.php, which leaks the path in an error message.
Test IDs: 1.3.6.1.4.1.25623.1.0.11477  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2002-0282
BugTraq ID: 4113
http://www.securityfocus.com/bid/4113
Bugtraq: 20020215 [ARL02-A02] DCP-Portal Root Path Disclosure Vulnerability (Google Search)
http://marc.info/?l=bugtraq&m=101379160830631&w=2
Bugtraq: 20020228 [ARL02-A04] DCP-Portal System Information Path Disclosure (Google Search)
http://marc.info/?l=bugtraq&m=101494497608620&w=2
XForce ISS Database: dcpportal-adduser-path-disclosure(8196)
https://exchange.xforce.ibmcloud.com/vulnerabilities/8196
XForce ISS Database: dcpportal-language-path-disclosure(8310)
http://www.iss.net/security_center/static/8310.php




© 1998-2024 E-Soft Inc. All rights reserved.