Sensitive Information Disclosure in ScozNet ScozBook 1.1 BETA via Invalid PG Parameter in view.php

Sensitive Information Disclosure in ScozNet ScozBook 1.1 BETA via Invalid PG Parameter in view.php

CVE-2003-1555 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

ScozNet ScozBook 1.1 BETA allows remote attackers to obtain sensitive information via an invalid PG parameter in view.php, which reveals the installation path in an error message.

Learn more about our Web Application Penetration Testing UK.