CVE-2007-6607 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2007-6607
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-6607

Description: OpenBiblio 0.5.2-pre4 and earlier allows remote attackers to obtain sensitive information via a direct request for (1) shared/footer.php, (2) circ/mbr_fields.php, or (3) admin/custom_marc_form_fields.php, which reveals the path in various error messages.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/39295 SREASON http://securityreason.com/securityalert/3502 OSVDB 41287 41286 41288 MISC http://sourceforge.net/project/shownotes.php?release_id=488061&group_id=50071 http://sourceforge.net/project/shownotes.php?release_id=451780&group_id=50071 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/485588/100/0/threaded BID 27053

Return to the previous page.