Remote Path Disclosure in CuteNews by CuteNews Co.
CVE-2006-1340

Currently unrated

Key Information:

Vendor: CutePHP
Status: Cutenews
Vendor: CVE Published:; 21 March 2006

What is CVE-2006-1340?

The CuteNews version 1.4.1 contains a vulnerability that enables remote attackers to exploit unspecified vectors, allowing them to access and reveal the installation path of the software. This could potentially lead to further attacks by exposing sensitive system information to unauthorized users.

References

http://secunia.com/advisories/19289

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/17152

vdb-entryx_refsource_BID

http://hamid.ir/security/cutenews.txt

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 21, 2006
Vulnerability Reserved
Mar 20, 2006

CutePHP

What is CVE-2006-1340?

References

Timeline