Information Disclosure Vulnerability in phpBook 2.1.0 by phpBook
CVE-2011-3771
Currently unrated
Summary
In phpBook version 2.1.0, an information disclosure vulnerability exists that allows remote attackers to gain insights into sensitive installation paths. This is achieved through direct requests to specific .php files, resulting in error messages that inadvertently reveal crucial data, such as the installation directory. Examples of the affected files include doc/update_smilies_1.50-1.60.php. This exposure can lead to further attacks and exploitation if sensitive directory structures are divulged.
References
Timeline
Vulnerability published
Vulnerability Reserved