Security Advisory

CVE-2006-1488

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-03-29 02:00:00

Last updated 2024-08-07 17:12:22

Assigner mitre

State PUBLISHED

Description

ActiveCampaign SupportTrio 2.5 allows remote attackers to obtain the full path of the server via invalid (1) article or (2) print parameters in a kb action to index.php, or (3) an invalid category parameter to modules/KB/pdf.php, which leaks the path in an error message.

← Browse all CVEs View on cve.org ↗