6 lines
No EOL
397 B
Text
6 lines
No EOL
397 B
Text
source: http://www.securityfocus.com/bid/7349/info
|
|
|
|
Several path disclosure vulnerabilities have been reported for eZ Publish. An attacker can exploit this vulnerability by making a HTTP request for any of the affected pages. This may result in a condition where path information is returned to the attacker.
|
|
|
|
http://[target]/kernel/class/delete.php
|
|
http://[target]/kernel/classes/ezrole.php |