| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-Id: <201208250544.q7P5i8NP030998@sf01web1.securityfocus.com> Date: Sat, 25 Aug 2012 05:44:08 GMT From: advisories@...hsecure.ir To: bugtraq@...urityfocus.com Subject: Paliz CMS Full Path Disclosure Vulnerability ################################################################################## # Title: Paliz CMS Full Path Disclosure Vulnerability # Vulnerable Version: all versions # Vendor URL: http://palizct.com # Impact: Low ################################################################################## =========================== Vulnerability Description: =========================== Full Path Disclosure Vulnerability, enable the attacker to see the root path. ================== Proof Of Concept: ================== http://[target]/portal/DeskTopModules/Currency/CurrencyAll.aspx?mID=[] ========= Credits: ========= HighSecure.ir Contact: advisories[aT]highsecure[dOt]ir ============ References: ============ http://www.highsecure.ir/research/20120822-paliz.txt ##################################################################################
Powered by blists - more mailing lists