Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2010-4401

Published: 06/12/2010 Updated: 25/03/2021
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 505
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Subscribe to Dynpg

Vulnerability Summary

languages.inc.php in DynPG CMS 4.2.0 allows remote malicious users to obtain sensitive information via a direct request, which reveals the installation path in an error message.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

dynpg dynpg 4.2.0

Exploits

Exploit DB: DynPG 4.2.0 - Multiple Vulnerabilities
Vulnerability ID: HTB22703 Reference: wwwhtbridgech/advisory/lfi_in_dynpghtml Product: DynPG Vendor: dynpgorg ( wwwdynpgorg/ ) Vulnerable Version: 420 Vendor Notification: 16 November 2010 Vulnerability Type: Local File Inclusion Status: Fixed by Vendor Risk level: Medium Credit: High-Tech Bridge SA - Ethical Hacking &amp ...

References

CWE-200http://www.exploit-db.com/exploits/15646http://packetstormsecurity.org/files/view/96230/dynpg-lfisqldisclose.txthttp://www.dynpg.org/cms-freeware_en.php?t=DynPG+Update+4.2.1+Security+Update&read_article=226http://www.htbridge.ch/advisory/path_disclosure_in_dynpg.htmlhttp://osvdb.org/69632https://nvd.nist.govhttps://www.exploit-db.com/exploits/15646/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654CVE-2024-2757authentication bypassCVE-2024-3194CVE-2024-33640CVE-2024-21111dosinsecure direct object referenceCVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook