CVEs-PoC/2004/CVE-2004-1504.md at 644028beecffb907d2d17205b6e4e97420cdd07e

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-29 20:39:28 +02:00

Files

T

0xMarcio ba290685fe Update CVE sources 2024-06-09 00:33

2024-06-09 00:33:16 +00:00

Description

The displaycontent function in config.php for Just Another Flat file (JAF) CMS 3.0RC allows remote attackers to gain sensitive information via a blank show parameter, which reveals the installation path in an error message, as demonstrated using index.php.

POC

Reference

http://echo.or.id/adv/adv08-y3dips-2004.txt
http://echo.or.id/adv/adv08-y3dips-2004.txt
http://marc.info/?l=bugtraq&m=110004150430309&w=2
http://marc.info/?l=bugtraq&m=110004150430309&w=2

Github

No PoCs found on GitHub currently.

872 B Raw Blame History

CVE-2004-1504

Description

POC

Reference

Github

872 B

Raw Blame History