mirror of
https://github.com/0xMarcio/cve.git
synced 2026-03-22 15:43:33 +00:00
768 B
768 B
CVE-2005-4575
Description
PaperThin CommonSpot Content Server 4.5 and earlier allow remote attackers to obtain sensitive information via an invalid errmsg parameter to loader.cfm with a url parameter set to email-login-info.cfm, which leaks the full pathname in the resulting error message.
POC
Reference
Github
No PoCs found on GitHub currently.