header-logo
Suggest Exploit
vendor:
Interchange
by:
5.5
CVSS
MEDIUM
Remote Information Disclosure
200
CWE
Product Name: Interchange
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:

Interchange Remote Information Disclosure Vulnerability

Interchange is prone to a remote information disclosure vulnerability that allows attackers to disclose contents of arbitrary variables via URI requests. This vulnerability can be exploited by sending a crafted request to the affected application.

Mitigation:

To mitigate this vulnerability, it is recommended to ensure that the application is up-to-date with the latest security patches and updates. Additionally, access controls should be implemented to restrict unauthorized access to sensitive information.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/10005/info

It has been reported that Interchange may be prone to a remote information disclosure vulnerability allowing attackers to disclose contents of arbitrary variables via URI requests.

This issue may allow an attacker to gain access to sensitive information that may be used to launch further attacks against a system. 

http://www.example.com/cgi-bin/store/__SQLUSER__

Navigation

Suggest Exploit

Services By CQR