Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 31/12/2003 Updated: 19/10/2018

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

MyABraCaDaWeb 1.0.2 and previous versions allows remote malicious users to obtain sensitive information via an invalid IDAdmin or other parameter, which reveals the installation path in an error message.

Vulnerable Product	Search on Vulmon	Subscribe to Product
myabracadaweb myabracadaweb

source: wwwsecurityfocuscom/bid/7126/info MyABraCaDaWeb is reported to disclose path information in error messages when handling some invalid requests This information could be useful in further attacks against a system hosting the software wwwexamplecom/indexphp?IDAdmin=test wwwexamplecom/indexphp?base=test http: ...

CWE-200 http://www.securityfocus.com/bid/7126 http://www.securitytracker.com/id?1006308 http://secunia.com/advisories/8320 http://securityreason.com/securityalert/3717 https://exchange.xforce.ibmcloud.com/vulnerabilities/11556 http://www.securityfocus.com/archive/1/315317/30/25460/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/22378/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2003-1548

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect