5 lines
No EOL
335 B
Text
5 lines
No EOL
335 B
Text
source: http://www.securityfocus.com/bid/8574/info
|
|
|
|
Escapade is prone to a path disclosure vulnerability. It is possible to gain access to sensitive path information by issuing a request for an invalid resource, passed as a value for the PAGE parameter to the Escapade Scripting Engine.
|
|
|
|
http://www.site.com/cgi-bin/esp?PAGE=!@#$% |