MercuryBoard 1.1.1 allows remote malicious users to gain sensitive information via an HTTP request with the n parameter set to 0, which causes a divide-by-zero error and reveals the path in the resulting error message.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mercuryboard mercuryboard 1.1 |
||
mercuryboard mercuryboard 1.1.1 |