mod.php in eNdonesia 8.3 allows remote malicious users to obtain sensitive information via certain direct requests, and certain requests with invalid parameter values, which reveal the path in various error messages, as demonstrated by the (1) mod and (2) cid parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
endonesia endonesia 8.3 |