PostNuke 0.7.5.0, and certain minor versions, allows remote malicious users to obtain sensitive information via a non-numeric value of the stop parameter, which reveals the path in an error message.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
postnuke software foundation postnuke 0.7.5.0 |