7 lines
No EOL
413 B
Text
7 lines
No EOL
413 B
Text
source: http://www.securityfocus.com/bid/8220/info
|
|
|
|
eStore is prone to a path disclosure vulnerability.
|
|
|
|
It has been reported that a remote attacker may make a direct HTTP request for an eStore include script and in doing so trigger an error. The resulting error message will disclose potentially sensitive installation path information to the remote attacker.
|
|
|
|
http://www.example.com/admin/settings.inc.php |