Sensitive Information Disclosure in DirectTopics 2.1 and 2.2 via Invalid Topic Parameter

Sensitive Information Disclosure in DirectTopics 2.1 and 2.2 via Invalid Topic Parameter

CVE-2005-1568 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

topic.php in DirectTopics 2.1 and 2.2 allows remote attackers to obtain sensitive information via an invalid topic parameter, which reveals the path in an error message.

Learn more about our Web Application Penetration Testing UK.