OSVDB ID: 17932 Title: oaboard channels.php Direct Request Path Disclosure |
Info |
|
|
Dates |
||||
|
|
Description |
oaboard contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker makes a direct request to the channels.php script, which will disclose the full installation path resulting in a loss of confidentiality. |
Classification |
Location:
Remote / Network Access
Attack Type: Information Disclosure Impact: Loss of Confidentiality Exploit: Exploit Public OSVDB: Web Related |
Solution |
Currently, there are no known upgrades, patches, or workarounds available to correct this issue. |
Products |
|
References |
Credit |
|
gmail.com -