[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

HTB22954: Path disclousure in yappa-ng Photo Gallery

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: HTB22954: Path disclousure in yappa-ng Photo Gallery
From: advisory@xxxxxxxxxxx
Date: Tue, 26 Apr 2011 16:07:22 +0200 (CEST)

Vulnerability ID: HTB22954
Reference: 
http://www.htbridge.ch/advisory/path_disclousure_in_yappa_ng_photo_gallery.html
Product: yappa-ng Photo Gallery
Vendor: http://www.zirkon.at/ ( http://www.zirkon.at/ ) 
Vulnerable Version: 2.3.2
Vendor Notification: 12 April 2011 
Vulnerability Type: Path disclousure
Risk level: Low 
Credit: High-Tech Bridge SA Security Research Lab ( 
http://www.htbridge.ch/advisory/ ) 

Vulnerability Details:
The vulnerability exists due to failure in the 
"languages/language_selection.inc.php" script, it's possible to generate an 
error that will reveal the full path of the script.
A remote user can determine the full path to the web root directory and other 
potentially sensitive information.


GET /index.php HTTP/1.1
Cookie: cookie_lang=123

Prev by Date: HTB22956: XSS vulnerabilities in phpList
Next by Date: HTB22951: XSS in WP-Ajax-Recent-Posts wordpress plugin
Previous by thread: HTB22956: XSS vulnerabilities in phpList
Next by thread: HTB22951: XSS in WP-Ajax-Recent-Posts wordpress plugin
Index(es):
- Date
- Thread