header-logo
Suggest Exploit
vendor:
SurgeLDAP
by:
SecurityFocus
4.3
CVSS
MEDIUM
Path Disclosure
200
CWE
Product Name: SurgeLDAP
Affected Version From: SurgeLDAP
Affected Version To: SurgeLDAP
Patch Exists: No
Related CWE: N/A
CPE: a:surgeldap:surgeldap
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2002

SurgeLDAP Path Disclosure Vulnerability

SurgeLDAP is prone to a path disclosure vulnerability. It is possible to gain access to sensitive path information by issuing an HTTP GET request for an invalid resource.

Mitigation:

No known mitigation
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/8406/info

SurgeLDAP is prone to a path disclosure vulnerability. It is possible to gain access to sensitive path information by issuing an HTTP GET request for an invalid resource.

This issue exists in the web server component of SurgeLDAP.

http://www.example.com:6680/aaa.html

Navigation

Suggest Exploit

Services By CQR