Security Advisory

CVE-2013-5994

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-11-21 02:00:00

Last updated 2024-08-06 17:29:42

Assigner jpcert

State PUBLISHED

Description

data/class/pages/mypage/LC_Page_Mypage_DeliveryAddr.php in LOCKON EC-CUBE 2.11.2 through 2.13.0 allows remote attackers to obtain sensitive information via a direct request, which reveals the full path in an error message.

← Browse all CVEs View on cve.org ↗