header-logo
Suggest Exploit
vendor:
Guestbook
by:
SecurityFocus
5
CVSS
MEDIUM
Path Disclosure
200
CWE
Product Name: Guestbook
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: YES
Related CWE: N/A
CPE: a:guestbook:guestbook
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2002

Path Disclosure Vulnerability in Guestbook

Guestbook is vulnerable to a path disclosure vulnerability when a request is made to the cfooter.php3 PHP script page. This allows an attacker to gain access to sensitive filesystem information which can be used to launch further attacks against the target system.

Mitigation:

Upgrade to the latest version of Guestbook.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/7234/info

A path disclosure vulnerability has been reported for Guestbook. The issue occurs when a request is made to the cfooter.php3 PHP script page.

Access to sensitive filesystem information may aid an attacker in launching further attacks against a target system

http://hostname/jgb_eng_php3/cfooter.php3

Navigation

Suggest Exploit

Services By CQR