auction_my_auctions.php in phpbb-Auction 1.2m and previous versions allows remote malicious users to obtain sensitive information via an invalid mode parameter, which leaks the full path in a PHP error message.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phpbb group phpbb-auction 1.0m |
||
phpbb group phpbb-auction 1.2m |