Directory Listing Vulnerability in AJ-Fork 167

Directory Listing Vulnerability in AJ-Fork 167

CVE-2004-1572 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

AJ-Fork 167 does not restrict access to directories such as (1) data, (2) inc, (3) plugins, (4) skins, or (5) tools, which allows remote attackers to list files in those directories via a direct HTTP request.

Learn more about our Web Application Penetration Testing UK.