Information Disclosure Vulnerability in Limbo CMS 1.0.4.2 and Earlier

Information Disclosure Vulnerability in Limbo CMS 1.0.4.2 and Earlier

CVE-2005-4320 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Limbo CMS 1.0.4.2 and earlier allows remote attackers to obtain the installation path of the application via a direct request to (1) doc.inc.php, (2) element.inc.php, and (3) node.inc.php, which leaks the path in an error message.

Learn more about our Cms Pen Testing.