Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

eStore 1.0.1/1.0.2 - 'Settings.inc.php' Full Path Disclosure

Related Vulnerabilities: CVE-2003-0586  
Publish Date: 17 Jul 2003
Author: Bosen
Source / Download Exploit 
                							

                source: http://www.securityfocus.com/bid/8220/info

eStore is prone to a path disclosure vulnerability.

It has been reported that a remote attacker may make a direct HTTP request for an eStore include script and in doing so trigger an error. The resulting error message will disclose potentially sensitive installation path information to the remote attacker.

http://www.example.com/admin/settings.inc.php

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started