Greg Donald : Security Vulnerabilities, CVEs, Published In 2006 (Information Leak)
index.php in Destiney Links Script 2.1.2 allows remote attackers to obtain the installation path via an invalid show parameter referencing a non-existent file, which reveals the path in the resulting error message. NOTE: this issue might be resultant from a more serious issue such as directory traversal.
Max CVSS
5.0
EPSS Score
0.55%
Published
2006-05-22
Updated
2018-10-18
1 vulnerabilities found